196 matches found
Delta Electronics CNCSoft Out-of-Bounds Write Vulnerability
Delta Electronics CNCSoft is a CNC machine simulation system software from Delta Electronics China. An out-of-bounds write vulnerability exists in Delta Electronics CNCSoft, which can be exploited by an attacker to execute arbitrary code on the system...
Delta Electronics CNCSoft out-of-bounds write vulnerability (CNVD-2025-22961)
Delta Electronics CNCSoft is a CNC machine simulation system software from Delta Electronics China. An out-of-bounds write vulnerability exists in Delta Electronics CNCSoft, which can be exploited by an attacker to execute arbitrary code on the system...
Delta Electronics CNCSoft Out-of-Bounds Write Vulnerability
Delta Electronics CNCSoft is a CNC machine simulation system software from Delta Electronics China. Delta Electronics CNCSoft suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context of the current process...
CVE-2025-47727
Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...
CVE-2024-22815
An issue in the communication protocol of Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to cause a Denial of Service DoS via crafted commands...
CVE-2024-22808
An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to cause a Denial of Service DoS by disrupting the communication between the PathPilot controller and the CNC router via overwriting the card's name in the device memory...
CVE-2024-22807
An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to erase a critical sector of the flash memory, causing the machine to lose network connectivity and suffer from firmware corruption...
CVE-2024-22813
An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to overwrite the hardcoded IP address in the device memory, disrupting network connectivity between the router and the controller...
CVE-2024-22811
An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to cause a Denial of Service DoS by disrupting the communication between the PathPilot controller and the CNC router via overwriting the Hostmot2 configuration cookie in the device memory...
CVE-2023-3346
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service DoS condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is...
CVE-2025-23140 misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq error
In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Avoid issue of interrupts remaining after requestirq error After devmrequestirq fails with error in pciendpointtestrequestirq, the pciendpointtestfreeirqvectors is called assuming that all IRQs have been...
CISA Releases Seven Industrial Control Systems Advisories
CISA released seven Industrial Control Systems ICS advisories on February 20, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-051-01 ABB ASPECT-Enterprise, NEXUS, and MATRIX Series ICSA-25-051-02 ABB FLXEON...
Mitsubishi Electric CNC Series Input Specified Quantity Validation Error Vulnerability
Mitsubishi Electric CNC Series is a series of CNC control systems from Mitsubishi Electric Japan. The Mitsubishi Electric CNC Series suffers from an Input Specified Quantity Validation Error vulnerability, which can be exploited by an attacker to cause a denial of service to the product by sendin...
CVE-2024-7316
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC Series allows a remote unauthenticated attacker to cause Denial of Service DoS condition on the product by sending specially crafted packets to TCP port 683, causing an emergency stop...
CVE-2024-7316 Denial of Service (DoS) Vulnerability in Mitsubishi Electric CNC Series
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC Series allows a remote unauthenticated attacker to cause Denial of Service DoS condition on the product by sending specially crafted packets to TCP port 683, causing an emergency stop...
CVE-2024-7316 Denial of Service (DoS) Vulnerability in Mitsubishi Electric CNC Series
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC Series allows a remote unauthenticated attacker to cause Denial of Service DoS condition on the product by sending specially crafted packets to TCP port 683, causing an emergency stop...
CVE-2024-7316
CVE-2024-7316 affects Mitsubishi Electric CNC Series and related models (e.g., M800V/M80V, M800/M80/E80, M700/M70/others; see advisory icsa-24-291-03) with a DoS via specially crafted TCP packets to port 683. Underlying issue is improper validation of a specified quantity in input. CVSS v3.1 base...
PT-2024-7388 · Mitsubishi · M800/M80/E80 Series +5
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric M800V/M80V Series versions affected versions not specified Mitsubishi Electric M800/M80/E80 Series versions affected versions not specified Mitsubishi Electric C80 Series versions affected versions not specified Mitsubishi...
Mitsubishi Electric CNC Series 安全漏洞
Mitsubishi Electric CNC Series is a series of CNC control systems from Mitsubishi Electric Japan. The Mitsubishi Electric CNC Series suffers from an Input Specified Quantity Validation Error vulnerability, which can be exploited by an attacker to cause a denial of service to the product by sendin...
Mitsubishi Electric CNC Series (Update D)
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION : Exploitable remotely Vendor : Mitsubishi Electric Equipment : CNC Series Vulnerability : Improper Validation of Specified Quantity in Input 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated remote...