Security Advisory

CVE-2025-22881

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-26 01:44:17

Last updated 2025-02-26 15:43:08

Assigner Deltaww

State PUBLISHED

Description

Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.

← Browse all CVEs View on cve.org ↗