A stack-based buffer overflow may exist in Delta Electronics CNCSoft ScreenEditor versions 1.01.26 and prior when processing specially crafted project files, which may allow an attacker to execute arbitrary code.
References
Link | Resource |
---|---|
https://us-cert.cisa.gov/ics/advisories/icsa-21-005-06 | Third Party Advisory US Government Resource |
https://www.zerodayinitiative.com/advisories/ZDI-21-039/ | Third Party Advisory VDB Entry |
Configurations
History
09 Mar 2021, 16:08
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-21-039/ - Third Party Advisory, VDB Entry |
14 Jan 2021, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (MISC) https://us-cert.cisa.gov/ics/advisories/icsa-21-005-06 - Third Party Advisory, US Government Resource | |
CPE | cpe:2.3:a:deltaww:cncsoft_screeneditor:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
CWE | CWE-787 |
11 Jan 2021, 16:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-01-11 16:15
Updated : 2023-12-10 13:41
NVD link : CVE-2020-27281
Mitre link : CVE-2020-27281
CVE.ORG link : CVE-2020-27281
JSON object : View
Products Affected
deltaww
- cncsoft_screeneditor