VYPR
Unrated severityNVD Advisory· Published Feb 26, 2025· Updated Feb 26, 2025

Heap-based Buffer Overflow in CNCSoft-G2

CVE-2025-22881

Description

Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.