Primary

Context

Delta Electronics CNCSoft-G2 File Parsing Stack-based Buffer Overflow Vulnerability

Vulnerability

Patched

A stack-based buffer overflow vulnerability has been identified in Delta Electronics CNCSoft-G2, specifically in versions through 2.1.0.27. The issue arises from improper validation of user-supplied files, allowing attackers to execute code within the context of the current process by opening a malicious file.

Impact

Exploitation of this vulnerability allows for arbitrary code execution in the context of the current process.

Remediation

Users are advised to download and update to version 2.1.0.34 or later. For those in China, the update is available through the Delta China Download Center.

Added: Sep 24, 2025, 7:17 AM

Updated: Sep 24, 2025, 7:17 AM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

7.5

exploitability

4.4

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

7.5

exploitability

4.4

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Delta Electronics CNCSoft-G2 File Parsing Stack-based Buffer Overflow Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Delta Electronics CNCSoft-G2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating