Vulnerabilities > Deltaww > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-10 CVE-2024-47962 Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.1.0.10
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer.
local
low complexity
deltaww CWE-787
7.8
7.8
2024-10-10 CVE-2024-47963 Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.1.0.10
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a write past the end of an allocated object.
local
low complexity
deltaww CWE-787
7.8
7.8
2024-10-10 CVE-2024-47964 Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.1.0.10
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer.
local
low complexity
deltaww CWE-787
7.8
7.8
2024-10-10 CVE-2024-47965 Out-of-bounds Read vulnerability in Deltaww Cncsoft-G2 2.1.0.10
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a read past the end of an allocated buffer.
local
low complexity
deltaww CWE-125
7.8
7.8
2024-10-10 CVE-2024-47966 Use of Uninitialized Resource vulnerability in Deltaww Cncsoft-G2 2.1.0.10
Delta Electronics CNCSoft-G2 lacks proper initialization of memory prior to accessing it.
local
low complexity
deltaww CWE-908
7.8
7.8
2024-10-03 CVE-2024-42417 SQL Injection vulnerability in Deltaww Diaenergie
Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx.
network
low complexity
deltaww CWE-89
8.8
8.8
2024-08-06 CVE-2024-7502 Out-of-bounds Write vulnerability in Deltaww Diascreen 1.2.1.23/1.3.2
A crafted DPA file could force Delta Electronics DIAScreen to overflow a stack-based buffer, which could allow an attacker to execute arbitrary code.
local
low complexity
deltaww CWE-787
7.8
7.8
2024-07-09 CVE-2024-39880 Out-of-bounds Write vulnerability in Deltaww Cncsoft-G2 2.0.0.5
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer.
network
low complexity
deltaww CWE-787
8.8
8.8
2024-07-09 CVE-2024-39881 Unspecified vulnerability in Deltaww Cncsoft-G2 2.0.0.5
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a memory corruption condition.
network
low complexity
deltaww
8.8
8.8
2024-07-09 CVE-2024-39882 Unspecified vulnerability in Deltaww Cncsoft-G2 2.0.0.5
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a read past the end of an allocated buffer.
network
low complexity
deltaww
8.8
8.8