GCVE - cpe:2.3:a:deltaww:cncsoft-g2:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:deltaww:cncsoft-g2:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Deltaww (`ad3e3879-744a-547a-8a68-13ba5faaf0a4`)
Product	Cncsoft G2 (`fdc929c3-4d7c-5b6c-b28a-bd1c3fe420c9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-3094`	vulnerable	2026-06-03 15:22:13.698451	File Parsing Out-Of-Bounds Write in CNCSoft-G2 HIGH (7.8) Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. Published: 2026-03-04T08:36:29.199Z Updated: 2026-03-18T05:40:54.458Z Open on db.gcve.eu Reference links https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2026-00004_CNCSoft-G2_File%20Parsing%20Out-Of-Bounds%20Write.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-58319`	vulnerable	2026-06-03 15:06:21.174825	File Parsing Memory Corruption in CNCSoft-G2 HIGH (7.8) Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. Published: 2025-09-24T06:42:08.525Z Updated: 2025-09-24T13:10:05.302Z Open on db.gcve.eu Reference links https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00017_CNCSoft-G2_File%20Parsing%20Stack-based%20Buffer%20Overflow%20Vulnerability.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-58317`	vulnerable	2026-06-03 15:06:21.172754	File Parsing Memory Corruption in CNCSoft-G2 HIGH (7.8) Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. Published: 2025-09-24T06:38:43.161Z Updated: 2026-03-18T05:26:08.198Z Open on db.gcve.eu Reference links https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00017_CNCSoft-G2_File%20Parsing%20Stack-based%20Buffer%20Overflow%20Vulnerability.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-47728`	vulnerable	2026-06-03 15:01:33.314074	File Parsing Memory Corruption in CNCSoft-G2 Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. Published: 2025-06-04T08:11:06.007Z Updated: 2026-03-18T05:36:26.384Z Open on db.gcve.eu Reference links https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00007_CNCSoft-G2%20-%20File%20Parsing%20Memory%20Corruption.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-22881`	vulnerable	2026-06-03 14:59:41.691385	Heap-based Buffer Overflow in CNCSoft-G2 Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process. Published: 2025-02-26T01:44:17.551Z Updated: 2025-02-26T15:43:08.047Z Open on db.gcve.eu Reference links https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00003_CNCSoft-G2%20-%20Heap-based%20Buffer%20Overflow_v1.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-22880`	vulnerable	2026-06-03 14:59:41.690933	Heap-based Buffer Overflow in CNCSoft-G2 HIGH (7.8) Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process. Published: 2025-02-07T07:26:04.691Z Updated: 2025-02-07T15:54:27.041Z Open on db.gcve.eu Reference links https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00002_CNCSoft-G2%20-%20Heap-based%20Buffer%20Overflow_v1.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-4192`	vulnerable	2026-06-03 14:57:14.900470	Stack-based Buffer Overflow vulnerability in Delta Electronics CNCSoft-G2 DOPSoft HIGH (7.8) Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Published: 2024-04-30T23:01:58.874Z Updated: 2024-09-03T18:16:25.046Z Open on db.gcve.eu Reference links https://www.cisa.gov/news-events/ics-advisories/icsa-24-121-01	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.