Security Advisory

CVE-2025-47749

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-19 07:43:43

Last updated 2025-05-19 15:27:49

Assigner jpcert

State PUBLISHED

Description

V-SFT v6.2.5.0 and earlier contains an issue with free of pointer not at start of buffer in VS6EditData.dll!CWinFontInf::WinFontMsgCheck function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution.

← Browse all CVEs View on cve.org ↗