17 matches found
EUVD-2021-24854
Malware in sbrugna...
EUVD-2021-24856
Malware in sbrugna...
CISA Releases Fifteen Industrial Control Systems Advisories
CISA released fifteen 15 Industrial Control Systems ICS advisories on February 16, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories f...
CVE-2022-4634
All versions prior to Delta Electronic’s CNCSoft version 1.01.34 running ScreenEditor versions 1.01.5 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code...
Stack overflow
All versions prior to Delta Electronic’s CNCSoft version 1.01.34 running ScreenEditor versions 1.01.5 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code...
CVE-2022-4634
CVE-2022-4634 affects Delta Electronics CNCSoft (CNCSoft prior to 1.01.34) and ScreenEditor prior to 1.01.5. The issue is a stack-based buffer overflow in DPB/file parsing, with reports of remote code execution potential; some sources indicate user interaction is required and others note no publi...
CVE-2022-4634 CVE-2022-4634
All versions prior to Delta Electronic’s CNCSoft version 1.01.34 running ScreenEditor versions 1.01.5 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code...
CVE-2021-38406
Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of the current process...
CVE-2021-38404
Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could result in a heap-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process...
CVE-2021-38404
Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could result in a heap-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process...
CVE-2021-38402
Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could lead to a stack-based buffer overflow while trying to copy to a buffer during font string handling. An attacker could leverage this vulnerability to...
Out-of-bounds
Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of the current process...
Heap overflow
Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could result in a heap-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process...
Stack overflow
Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could lead to a stack-based buffer overflow while trying to copy to a buffer during font string handling. An attacker could leverage this vulnerability to...
CVE-2021-38404
CVE-2021-38404 affects Delta Electronics DOPSoft 2 (version 2.00.07 and prior). The vulnerability is a heap-based buffer overflow that arises from improper validation of user-supplied data when parsing specific project files, allowing code execution in the context of the current process. Related ...
CVE-2021-38402
Delta Electronics DOPSoft 2 (version ≤ 2.00.07) is affected by CVE-2021-38402 due to improper validation of user-supplied data when parsing certain project files, causing a stack-based buffer overflow in font string handling. This can allow arbitrary code execution in the current process. Public ...
CVE-2021-38406
CVE-2021-38406 affects Delta Electronics DOPSoft 2 (versions ≤ 2.00.07). It is caused by improper validation of user-supplied data when parsing specific project files, leading to multiple out-of-bounds write instances and potential code execution in the attacker’s context. The issue is documented...