Unrated severityNVD Advisory· Published Mar 4, 2026· Updated Mar 18, 2026
File Parsing Out-Of-Bounds Write in CNCSoft-G2
CVE-2026-3094
Description
Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
Affected products
2- deltaww/CNCSoft-G2v5Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
1- ZDI-26-151: Delta Electronics CNCSoft-G2 DPAX File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityZero Day Initiative · Mar 6, 2026