Approved changes feed: RSS · Atom
cpe:2.3:a:fujielectric:v-sft:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Fujielectric (4b88a999-6357-5bd2-b4a2-064bfc281e2b) |
|---|---|
| Product | V Sft (6b5ab984-630d-5045-b8d5-cedadddd288c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-32929 |
vulnerable | 2026-06-03 15:20:43.950825 |
Details available
HIGH (7.8)
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.
Published: 2026-04-01T23:00:07.041Z
Updated: 2026-04-02T13:32:36.370Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32928 |
vulnerable | 2026-06-03 15:20:43.950365 |
Details available
HIGH (7.8)
V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
Published: 2026-04-01T22:59:39.379Z
Updated: 2026-04-02T13:32:44.120Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32927 |
vulnerable | 2026-06-03 15:20:43.949867 |
Details available
HIGH (7.8)
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.
Published: 2026-04-01T22:59:21.885Z
Updated: 2026-04-02T13:32:53.041Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32926 |
vulnerable | 2026-06-03 15:20:43.949562 |
Details available
HIGH (7.8)
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.
Published: 2026-04-01T22:58:55.498Z
Updated: 2026-04-02T13:33:02.118Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32925 |
vulnerable | 2026-06-03 15:20:43.949049 |
Details available
HIGH (7.8)
V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CV7BaseMap::WriteV7DataToRom. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
Published: 2026-04-01T22:58:32.805Z
Updated: 2026-04-02T13:33:08.774Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38309 |
vulnerable | 2026-06-03 14:56:16.721031 |
Details available
There are multiple stack-based buffer overflow vulnerabilities in V-SFT (v6.2.2.0 and earlier), TELLUS (v4.0.19.0 and earlier), and TELLUS Lite (v4.0.19.0 and earlier).
If a user opens a specially crafted file, information may be disclosed and/or arbitrary code may be executed.
Published: 2024-11-28T02:10:32.213Z
Updated: 2024-11-29T20:52:09.295Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-46360 |
vulnerable | 2026-06-03 14:48:25.943302 |
Details available
Out-of-bounds read vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file.
Published: 2023-01-03T00:00:00.000Z
Updated: 2025-04-10T16:24:48.372Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-43448 |
vulnerable | 2026-06-03 14:48:14.221488 |
Details available
Out-of-bounds write vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file.
Published: 2023-01-03T00:00:00.000Z
Updated: 2025-04-10T17:51:08.171Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-29925 |
vulnerable | 2026-06-03 14:46:59.817291 |
Details available
Access of uninitialized pointer vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.
Published: 2022-06-14T07:05:47.000Z
Updated: 2024-08-03T06:33:43.328Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-29522 |
vulnerable | 2026-06-03 14:46:58.510908 |
Details available
Use after free vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.
Published: 2022-06-14T07:05:44.000Z
Updated: 2024-08-03T06:26:06.350Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-29506 |
vulnerable | 2026-06-03 14:46:58.382612 |
Details available
Out-of-bounds read vulnerability exist in the simulator module contained in the graphic editor 'V-SFT' v6.1.3.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.
Published: 2022-06-14T07:05:41.000Z
Updated: 2024-08-03T06:26:06.231Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-26302 |
vulnerable | 2026-06-03 14:46:41.900448 |
Details available
Heap-based buffer overflow exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.
Published: 2022-06-14T07:05:34.000Z
Updated: 2024-08-03T04:56:37.894Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.