Vulnerabilities > CVE-2025-47749 - Free of Pointer not at Start of Buffer vulnerability in Fujielectric Monitouch V-Sft

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

fujielectric

CWE-761

NVD

Published: 2025-05-19

Updated: 2025-05-19

Summary

V-SFT v6.2.5.0 and earlier contains an issue with free of pointer not at start of buffer in VS6EditData.dll!CWinFontInf::WinFontMsgCheck function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution.

Vulnerable Configurations

Part	Description	Count
Application	Fujielectric Fujielectric Monitouch V SFT 6.0.2.0 Fujielectric Monitouch V SFT 6.0.3.0 Fujielectric Monitouch V SFT 6.0.4.0 Fujielectric Monitouch V SFT 6.0.5.0 Fujielectric Monitouch V SFT 6.0.6.0 Fujielectric Monitouch V SFT 6.0.7.0 Fujielectric Monitouch V SFT 6.0.8.0 Fujielectric Monitouch V SFT 6.0.9.0 Fujielectric Monitouch V SFT 6.1.0.0 Fujielectric Monitouch V SFT 6.1.1.0 Fujielectric Monitouch V SFT 6.1.2.0 Fujielectric Monitouch V SFT 6.1.3.0 Fujielectric Monitouch V SFT 6.1.4.0 Fujielectric Monitouch V SFT 6.1.5.0 Fujielectric Monitouch V SFT 6.1.6.0 Fujielectric Monitouch V SFT 6.1.6.0A Fujielectric Monitouch V SFT 6.1.7.0 Fujielectric Monitouch V SFT 6.1.8.0 Fujielectric Monitouch V SFT 6.2.0.0 Fujielectric Monitouch V SFT 6.2.1.0 Fujielectric Monitouch V SFT 6.2.2.0 Fujielectric Monitouch V SFT 6.2.3.0 Fujielectric Monitouch V SFT 6.2.4.0 Fujielectric Monitouch V SFT 6.2.4.0A	24

Common Weakness Enumeration (CWE)

CWE-761 - Free of Pointer not at Start of Buffer

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References