CVE-2025-22881
Essential information
- Published
- 26/02/2025 08:14
- Modified
- 26/02/2025 08:14
- Author
- —
- Creator
- —
- CISA KEV
- No
- CWE
- —
- CVSS vector
- — — —
Description
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.
NVD status
- Status
- Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- 759f5e80-c8e1-4224-bead-956d7b33c98b
- NVD
- View on NVD