VYPR

Cncsoft

by Industrial Imagination

CVEs (5)

  • CVE-2018-10636HigAug 13, 2018
    risk 0.58cvss 8.8epss 0.10

    CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer overflow vulnerabilities that could cause the software to crash due to lacking user input validation before copying data from project files onto the stack. Which may allow an…

  • CVE-2018-10598HigAug 13, 2018
    risk 0.53cvss 8.1epss 0.04

    CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has two out-of-bounds read vulnerabilities could cause the software to crash due to lacking user input validation for processing project files. Which may allow an attacker to gain remote code execution with…

  • CVE-2022-4634Feb 2, 2023
    risk 0.00cvss epss 0.05

    All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01.5 and prior) are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code.

  • CVE-2019-10947Apr 17, 2019
    risk 0.00cvss epss 0.04

    Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, allowing an attacker to remotely execute arbitrary code. This may occur…

  • CVE-2019-10951Apr 17, 2019
    risk 0.00cvss epss 0.03

    Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, allowing an attacker to remotely execute arbitrary code. There is a lack of…