An out-of-bounds write vulnerability exists in VS6ComFile!CItemDraw::is_motion_tween of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end (ABEND), and arbitrary code execution.
Metrics
Affected Vendors & Products
References
History
Fri, 10 Oct 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 10 Oct 2025 10:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An out-of-bounds write vulnerability exists in VS6ComFile!CItemDraw::is_motion_tween of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end (ABEND), and arbitrary code execution. | |
Weaknesses | CWE-787 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: jpcert
Published: 2025-10-10T10:33:18.226Z
Updated: 2025-10-10T15:46:50.694Z
Reserved: 2025-10-02T01:59:58.731Z
Link: CVE-2025-61859

Updated: 2025-10-10T15:46:31.060Z

Status : Received
Published: 2025-10-10T11:15:43.577
Modified: 2025-10-10T11:15:43.577
Link: CVE-2025-61859

No data.