GCVE - cpe:2.3:a:n/a:delta_industrial_automation

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:delta_industrial_automation_cncsoft:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Delta Industrial Automation Cncsoft (`51119d3e-8169-540c-9f2d-0160cd0e7ce9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-10951`	vulnerable	2026-06-08 05:12:25.965919	Details available Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, allowing an attacker to remotely execute arbitrary code. There is a lack of user input validation before copying data from project files onto the heap. Published: 2019-04-17T14:04:03.000Z Updated: 2024-08-04T22:40:15.223Z Open on db.gcve.eu Reference links https://ics-cert.us-cert.gov/advisories/ICSA-19-106-01 https://www.zerodayinitiative.com/advisories/ZDI-19-405/ https://www.zerodayinitiative.com/advisories/ZDI-19-408/ http://www.securityfocus.com/bid/107989	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-10949`	vulnerable	2026-06-08 05:12:25.965078	Details available Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple out-of-bounds read vulnerabilities may be exploited, allowing information disclosure due to a lack of user input validation for processing specially crafted project files. Published: 2019-04-17T14:03:17.000Z Updated: 2024-08-04T22:40:15.240Z Open on db.gcve.eu Reference links https://ics-cert.us-cert.gov/advisories/ICSA-19-106-01 https://www.zerodayinitiative.com/advisories/ZDI-19-418/ https://www.zerodayinitiative.com/advisories/ZDI-19-406/ https://www.zerodayinitiative.com/advisories/ZDI-19-419/ https://www.zerodayinitiative.com/advisories/ZDI-19-412/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-10947`	vulnerable	2026-06-08 05:12:25.959547	Details available Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, allowing an attacker to remotely execute arbitrary code. This may occur because CNCSoft lacks user input validation before copying data from project files onto the stack. Published: 2019-04-17T14:04:53.000Z Updated: 2024-08-04T22:40:15.259Z Open on db.gcve.eu Reference links https://ics-cert.us-cert.gov/advisories/ICSA-19-106-01 https://www.zerodayinitiative.com/advisories/ZDI-19-417/ https://www.zerodayinitiative.com/advisories/ZDI-19-399/ https://www.zerodayinitiative.com/advisories/ZDI-19-401/ https://www.zerodayinitiative.com/advisories/ZDI-19-402/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Delta Industrial Automation Cncsoft

PURL mappings

Vulnerability references

Contribute