CVE-2024-39882
July 9, 2024, 10:15 p.m.
Tags
Product(s) Impacted
Delta Electronics CNCSoft-G2
Description
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.
Weaknesses
CWE-125
Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
CWE ID: 125Date
Published: July 9, 2024, 10:15 p.m.
Last Modified: July 9, 2024, 10:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
ics-cert@hq.dhs.gov
References
ics-cert@hq.dhs.gov