Primary

Context

Delta Electronics ISPSoft Out-of-Bounds Write Vulnerability Allowing Arbitrary Code Execution

Vulnerability

An out-of-bounds write vulnerability has been identified in Delta Electronics ISPSoft version 3.20 and prior. This vulnerability could allow an attacker to execute arbitrary code when the application is parsing ISP files.

Impact

Exploitation of this vulnerability could lead to a stack-based buffer overflow, allowing for arbitrary code execution.

Remediation

Users are advised to download and update to ISPSoft version 3.21 or later. For assistance, contact Delta Electronics through their customer service portal.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Delta Electronics ISPSoft Out-of-Bounds Write Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating