cbcvebase.
CVE-2022-4634
published 2023-02-03

CVE-2022-4634: All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01.5 and prior) are vulnerable to a stack-based buffer…

PriorityP347high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
5.32%
91.6th percentile
All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01.5 and prior) are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code.

Affected

4 ranges
VendorProductVersion rangeFixed in
delta_industrial_automationcncsoft>= all versions < v1.01.34v1.01.34
delta_industrial_automationscreeneditorall versions – 1.01.5
deltawwcncsoft< 1.01.341.01.34
deltawwscreeneditor< 1.01.51.01.5
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.