8 matches found
CVE-2025-22882
CVE-2025-22882 (ISPSoft) affects Delta Electronics ISPSoft 3.20. The vulnerability is a stack-based buffer overflow in the CBDGL file parser, reportedly triggered by debugging logic, enabling arbitrary code execution. Several sources corroborate this description and indicate potential remote/expl...
CVE-2025-4124
Delta Electronics ISPSoft 3.20 is affected by an Out-of-Bounds Write vulnerability in the ISP file parsing that could allow arbitrary code execution. Several trusted sources concur on the impact, with CVSS notes ranging from High to Critical (depending on source). The root cause is an out-of-boun...
CVE-2025-22884
Delta Electronics ISPSoft version 3.20 is vulnerable to a stack-based buffer overflow when parsing DVP files, enabling arbitrary code execution as described across multiple sources (NVD, Red Hat, CNVD, CNNVD, PT-SEC). The vulnerability affects ISPSoft and is reported as high/critical in CVSS term...
CVE-2025-22883
CVE-2025-22883 affects Delta Electronics ISPSoft version 3.20 (and prior 3.19 and earlier per CISA) with an out-of-bounds write while parsing DVP files, enabling arbitrary code execution. Root cause: out-of-bounds write in DVP parsing. Impact: high/critical potential for remote or local code exec...
CVE-2025-4125
Delta Electronics ISPSoft 3.20 is vulnerable to an Out-of-Bounds Write in the ISP file parser that could allow arbitrary code execution. Affected software: Delta Electronics ISPSoft; component: ISP file parsing logic. Root cause: out-of-bounds write while parsing ISP files. Impact: potential remo...
CVE-2020-27280
CVE-2020-27280 is a use-after-free vulnerability in Delta Electronics ISPSoft (v3.12 and prior) related to how it processes ISP project files. The flaw can allow an attacker to craft a malicious project file that may execute arbitrary code within the application’s context. Public-facing sources d...
CVE-2018-14800
Delta Electronics ISPSoft is impacted by CVE-2018-14800. A stack-based buffer overflow in the DVP file parsing path affects ISPSoft versions 3.0.5 and earlier, caused by improper validation/length handling when copying user-supplied data, allowing an attacker to execute code in the context of the...
CVE-2023-5131
CVE-2023-5131 describes a heap buffer-overflow in Delta Electronics ISPSoft. The vulnerability affects the ISPSoft software when handling a specially crafted DVP file, which can lead to arbitrary code execution. The public descriptions state the issue as a heap overflow but do not provide specifi...