Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Metrics
Affected Vendors & Products
References
History
Fri, 11 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Thu, 10 Jul 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Deltaww
Deltaww cncsoft-g2 |
|
CPEs | cpe:2.3:a:deltaww:cncsoft-g2:*:*:*:*:*:*:*:* | |
Vendors & Products |
Deltaww
Deltaww cncsoft-g2 |

Status: PUBLISHED
Assigner: icscert
Published: 2024-04-30T23:01:58.874Z
Updated: 2024-09-03T18:16:25.046Z
Reserved: 2024-04-25T14:55:16.868Z
Link: CVE-2024-4192

Updated: 2024-08-01T20:33:52.537Z

Status : Analyzed
Published: 2024-04-30T23:15:06.770
Modified: 2025-07-10T15:54:18.440
Link: CVE-2024-4192

No data.