CVE-2025-47724
Severity CVSS v4.0:
HIGH
Type:
CWE-787
Out-of-bounds Write
Publication date:
04/06/2025
Last modified:
11/07/2025
Description
Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
Impact
Base Score 4.0
7.30
Severity 4.0
HIGH
Base Score 3.x
7.30
Severity 3.x
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:deltaww:cncsoft:*:*:*:*:*:*:*:* | 1.01.34 (including) |
To consult the complete list of CPE names with products and versions, see this page