Vulnerabilities > Deltaww
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-10 | CVE-2024-47962 | Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.1.0.10 Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. | 7.8 |
| 2024-10-10 | CVE-2024-47963 | Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.1.0.10 Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a write past the end of an allocated object. | 7.8 |
| 2024-10-10 | CVE-2024-47964 | Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.1.0.10 Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. | 7.8 |
| 2024-10-10 | CVE-2024-47965 | Out-of-bounds Read vulnerability in Deltaww Cncsoft-G2 2.1.0.10 Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. | 7.8 |
| 2024-10-10 | CVE-2024-47966 | Use of Uninitialized Resource vulnerability in Deltaww Cncsoft-G2 2.1.0.10 Delta Electronics CNCSoft-G2 lacks proper initialization of memory prior to accessing it. | 7.8 |
| 2024-10-03 | CVE-2024-42417 | SQL Injection vulnerability in Deltaww Diaenergie Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx. | 8.8 |
| 2024-10-03 | CVE-2024-43699 | SQL Injection vulnerability in Deltaww Diaenergie Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script AM_RegReport.aspx. | 9.8 |
| 2024-08-29 | CVE-2024-8255 | Deserialization of Untrusted Data vulnerability in Deltaww DTN Soft Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability. | 9.8 |
| 2024-08-06 | CVE-2024-7502 | Out-of-bounds Write vulnerability in Deltaww Diascreen 1.2.1.23/1.3.2 A crafted DPA file could force Delta Electronics DIAScreen to overflow a stack-based buffer, which could allow an attacker to execute arbitrary code. | 7.8 |
| 2024-07-09 | CVE-2024-39880 | Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.0.0.5 Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. | 8.8 |