CVE-2020-27291

Delta Electronics CNCSoft-B Versions 1.0.0.2 and prior is vulnerable to an out-of-bounds read while processing project files, which may allow an attacker to execute arbitrary code.
References
Link Resource
https://us-cert.cisa.gov/ics/advisories/icsa-21-007-04 Third Party Advisory US Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-21-042/ Third Party Advisory VDB Entry
https://us-cert.cisa.gov/ics/advisories/icsa-21-007-04 Third Party Advisory US Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-21-042/ Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:deltaww:cncsoft-b:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:21

Type Values Removed Values Added
References () https://us-cert.cisa.gov/ics/advisories/icsa-21-007-04 - Third Party Advisory, US Government Resource () https://us-cert.cisa.gov/ics/advisories/icsa-21-007-04 - Third Party Advisory, US Government Resource
References () https://www.zerodayinitiative.com/advisories/ZDI-21-042/ - Third Party Advisory, VDB Entry () https://www.zerodayinitiative.com/advisories/ZDI-21-042/ - Third Party Advisory, VDB Entry

Information

Published : 2021-01-11 16:15

Updated : 2024-11-21 05:21


NVD link : CVE-2020-27291

Mitre link : CVE-2020-27291

CVE.ORG link : CVE-2020-27291


JSON object : View

Products Affected

deltaww

  • cncsoft-b
CWE
CWE-125

Out-of-bounds Read