cbcvebase.

Deltaww Cncsoft Screeneditor vulnerabilities

12 known vulnerabilities affecting deltaww/cncsoft_screeneditor.

Total CVEs
12
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH7MEDIUM3LOW1

Vulnerabilities

Page 1 of 1
CVE-2021-22668P3CRITICALCVSS 9.8≤ 1.01.282021-05-16
CVE-2021-22668 [CRITICAL] CWE-125 CVE-2021-22668: Delta Industrial Automation CNCSoft ScreenEditor Versions 1.01.28 (with ScreenEditor Version 1.01.2) Delta Industrial Automation CNCSoft ScreenEditor Versions 1.01.28 (with ScreenEditor Version 1.01.2) and prior are vulnerable to an out-of-bounds read while processing project files, which may allow an attacker to execute arbitrary code.
nvd
CVE-2021-22672P3HIGHCVSS 7.8fixed in 1.01.302021-05-10
CVE-2021-22672 [HIGH] CWE-787 CVE-2021-22672: Delta Electronics' CNCSoft ScreenEditor in versions prior to v1.01.30 could allow the corruption of Delta Electronics' CNCSoft ScreenEditor in versions prior to v1.01.30 could allow the corruption of data, a denial-of-service condition, or code execution. The vulnerability may allow an attacker to remotely execute arbitrary code.
nvd
CVE-2020-16199P3HIGHCVSS 7.8≤ 1.01.232020-08-04
CVE-2020-16199 [HIGH] CWE-121 CVE-2020-16199: Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple stack-based b Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, which may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.
nvd
CVE-2019-10947P3HIGHCVSS 7.8≤ 1.00.882019-04-17
CVE-2019-10947 [HIGH] CWE-121 CVE-2019-10947: Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple stack- Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, allowing an attacker to remotely execute arbitrary code. This may occur because CNCSoft lacks user input validation before copying data from project fi
nvd
CVE-2020-27281P3HIGHCVSS 7.8≤ 1.01.262021-01-11
CVE-2020-27281 [HIGH] CWE-121 CVE-2020-27281: A stack-based buffer overflow may exist in Delta Electronics CNCSoft ScreenEditor versions 1.01.26 a A stack-based buffer overflow may exist in Delta Electronics CNCSoft ScreenEditor versions 1.01.26 and prior when processing specially crafted project files, which may allow an attacker to execute arbitrary code.
nvd
CVE-2019-10951P3HIGHCVSS 7.8≤ 1.00.882019-04-17
CVE-2019-10951 [HIGH] CWE-122 CVE-2019-10951: Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple heap-b Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, allowing an attacker to remotely execute arbitrary code. There is a lack of user input validation before copying data from project files onto the heap.
nvd
CVE-2020-16203P3HIGHCVSS 7.8≤ 1.01.232020-08-04
CVE-2020-16203 [HIGH] CWE-824 CVE-2020-16203: Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. An uninitialized point Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. An uninitialized pointer may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.
nvd
CVE-2020-7002P4HIGHCVSS 7.8≤ 1.00.962020-03-18
CVE-2020-7002 [HIGH] CWE-121 CVE-2020-7002: Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. Multiple stack-based buffer ov Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. Multiple stack-based buffer overflows can be exploited when a valid user opens a specially crafted, malicious input file.
nvd
CVE-2019-10949P4MEDIUMCVSS 5.5≤ 1.00.882019-04-17
CVE-2019-10949 [MEDIUM] CWE-125 CVE-2019-10949: Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple out-of Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple out-of-bounds read vulnerabilities may be exploited, allowing information disclosure due to a lack of user input validation for processing specially crafted project files.
nvd
CVE-2020-6976P4MEDIUMCVSS 5.5≤ 1.00.962020-03-18
CVE-2020-6976 [MEDIUM] CWE-125 CVE-2020-6976: Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. An out-of-bounds read overflow Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. An out-of-bounds read overflow can be exploited when a valid user opens a specially crafted, malicious input file due to the lack of validation.
nvd
CVE-2021-44768P4MEDIUMCVSS 5.5≤ 1.01.302022-03-25
CVE-2021-44768 [MEDIUM] CWE-125 CVE-2021-44768: Delta Electronics CNCSoft (Version 1.01.30) and prior) is vulnerable to an out-of-bounds read while Delta Electronics CNCSoft (Version 1.01.30) and prior) is vulnerable to an out-of-bounds read while processing a specific project file, which may allow an attacker to disclose information.
nvd
CVE-2020-16201P4LOWCVSS 3.3≤ 1.01.232020-08-04
CVE-2020-16201 [LOW] CWE-125 CVE-2020-16201: Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple out-of-bounds Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple out-of-bounds read vulnerabilities may be exploited by processing specially crafted project files, which may allow an attacker to read information.
nvd
Deltaww Cncsoft Screeneditor vulnerabilities | cvebase