Vulnerabilities > CVE-2021-38406 - Unspecified vulnerability in Deltaww Dopsoft 2.00.07

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
deltaww

Summary

Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of the current process.

Vulnerable Configurations

Part Description Count
Application
Deltaww
1