Vulnerabilities > Deltaww > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-17 | CVE-2021-38404 | Heap-based Buffer Overflow vulnerability in Deltaww Dopsoft 2.00.07 Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. | 6.8 |
| 2021-09-17 | CVE-2021-38406 | Out-of-bounds Write vulnerability in Deltaww Dopsoft 2.00.07 Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. | 6.8 |
| 2021-08-30 | CVE-2021-32991 | Cross-Site Request Forgery (CSRF) vulnerability in Deltaww Diaenergie 1.7.5 Delta Electronics DIAEnergie Version 1.7.5 and prior is vulnerable to cross-site request forgery, which may allow an attacker to cause a user to carry out an action unintentionally. | 4.3 |
| 2021-08-30 | CVE-2021-33007 | Heap-based Buffer Overflow vulnerability in Deltaww Tpeditor A heap-based buffer overflow in Delta Electronics TPEditor: v1.98.06 and prior may be exploited by processing a specially crafted project file. | 6.8 |
| 2021-08-30 | CVE-2021-33019 | Stack-based Buffer Overflow vulnerability in Deltaww Dopsoft A stack-based buffer overflow vulnerability in Delta Electronics DOPSoft Version 4.00.11 and prior may be exploited by processing a specially crafted project file, which may allow an attacker to execute arbitrary code. | 6.8 |
| 2021-07-02 | CVE-2021-27412 | Out-of-bounds Read vulnerability in Deltaww Dopsoft Delta Electronics DOPSoft Versions 4.0.10.17 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code. | 6.8 |
| 2021-07-02 | CVE-2021-27455 | Out-of-bounds Read vulnerability in Deltaww Dopsoft Delta Electronics DOPSoft Versions 4.0.10.17 and prior are vulnerable to an out-of-bounds read while processing project files, which may allow an attacker to disclose information. | 4.3 |
| 2021-05-10 | CVE-2021-22672 | Out-of-bounds Write vulnerability in Deltaww Cncsoft Screeneditor Delta Electronics' CNCSoft ScreenEditor in versions prior to v1.01.30 could allow the corruption of data, a denial-of-service condition, or code execution. | 6.8 |
| 2021-01-26 | CVE-2020-27288 | Out-of-bounds Write vulnerability in Deltaww Tpeditor An untrusted pointer dereference has been identified in the way TPEditor(v1.98 and prior) processes project files, allowing an attacker to craft a special project file that may permit arbitrary code execution. | 6.8 |
| 2021-01-26 | CVE-2020-27284 | Out-of-bounds Write vulnerability in Deltaww Tpeditor TPEditor (v1.98 and prior) is vulnerable to two out-of-bounds write instances in the way it processes project files, allowing an attacker to craft a special project file that may permit arbitrary code execution. | 6.8 |