cbcvebase.

Deltaww Cncsoft vulnerabilities

10 known vulnerabilities affecting deltaww/cncsoft.

Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH10

Vulnerabilities

Page 1 of 1
CVE-2018-10636P3HIGHCVSS 8.8≤ 1.00.832018-08-13
CVE-2018-10636 [HIGH] CWE-121 CVE-2018-10636: CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer overflow vulnerabilities that could cause the software to crash due to lacking user input validation before copying data from project files onto the stack. Which may allow an attacker to gain remote code execution with administrator privileges if exploit
nvd
CVE-2022-4634P3HIGHCVSS 7.8fixed in 1.01.342023-02-03
CVE-2022-4634 [HIGH] CWE-121 CVE-2022-4634: All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01 All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01.5 and prior) are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code.
nvd
CVE-2021-43982P3HIGHCVSS 7.8≤ 1.01.302021-12-09
CVE-2021-43982 [HIGH] CWE-121 CVE-2021-43982: Delta Electronics CNCSoft Versions 1.01.30 and prior are vulnerable to a stack-based buffer overflow Delta Electronics CNCSoft Versions 1.01.30 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code.
nvd
CVE-2018-10598P3HIGHCVSS 8.1≤ 1.00.832018-08-13
CVE-2018-10598 [HIGH] CWE-125 CVE-2018-10598: CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has two out-of-bounds read vulne CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has two out-of-bounds read vulnerabilities could cause the software to crash due to lacking user input validation for processing project files. Which may allow an attacker to gain remote code execution with administrator privileges if exploited.
nvd
CVE-2022-1405P3HIGHCVSS 7.8fixed in 1.01.322022-08-31
CVE-2022-1405 [HIGH] CWE-121 CVE-2022-1405: CNCSoft: All versions prior to 1.01.32 does not properly sanitize input while processing a specific CNCSoft: All versions prior to 1.01.32 does not properly sanitize input while processing a specific project file, allowing a possible stack-based buffer overflow condition.
nvd
CVE-2025-47726P3HIGHCVSS 7.3≤ 1.01.342025-06-04
CVE-2025-47726 [HIGH] CWE-787 CVE-2025-47726: Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malic Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
nvd
CVE-2025-47727P3HIGHCVSS 7.3≤ 1.01.342025-06-04
CVE-2025-47727 [HIGH] CWE-787 CVE-2025-47727: Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malic Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
nvd
CVE-2025-47725P3HIGHCVSS 7.3≤ 1.01.342025-06-04
CVE-2025-47725 [HIGH] CWE-787 CVE-2025-47725: Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malic Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
nvd
CVE-2025-47724P3HIGHCVSS 7.3≤ 1.01.342025-06-04
CVE-2025-47724 [HIGH] CWE-787 CVE-2025-47724: Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malic Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
nvd
CVE-2022-1404P4HIGHCVSS 7.1fixed in 1.01.322022-08-31
CVE-2022-1404 [HIGH] CWE-125 CVE-2022-1404: Delta Electronics CNCSoft (All versions prior to 1.01.32) does not properly sanitize input while pro Delta Electronics CNCSoft (All versions prior to 1.01.32) does not properly sanitize input while processing a specific project file, allowing a possible out-of-bounds read condition.
nvd
Deltaww Cncsoft vulnerabilities | cvebase