4 matches found
CVE-2025-22880
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current...
CVE-2025-22880
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current...
CVE-2025-22880
creationtimestamp| type| source ---|---|--- 2025-02-07 07:30:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113961429154590452 2025-02-07 08:15:48+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhl5vol2iw2t 2025-02-07 08:53:40+00:00| seen|...
CVE-2025-22880
CVE-2025-22880 affects Delta Electronics CNCSoft-G2. The issue is a heap-based buffer overflow caused by inadequate validation of the length of user-supplied data before copying to a fixed-length heap buffer. This can allow code execution in the context of the current process when a target visits...