Primary

Context

Delta Electronics CNCSoft-G2 Out-of-Bounds Write Vulnerability Allowing Code Execution

Vulnerability

Patched

A code execution vulnerability has been identified in Delta Electronics CNCSoft-G2, specifically in versions through 2.1.0.34. The issue arises from improper validation of user-supplied files, which can lead to out-of-bounds write conditions. When a user opens a malicious file, an attacker can exploit this vulnerability to execute arbitrary code within the context of the current process.

Impact

Exploitation of this vulnerability allows for arbitrary code execution in the context of the affected process.

Remediation

Users are advised to download and update to version 2.1.0.39 or later. This update is available through the Delta Download Center.

Added: Mar 4, 2026, 9:24 AM

Updated: Mar 4, 2026, 9:24 AM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

7.5

exploitability

3.6

remediation

7.7

relevance

3.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

7.5

exploitability

3.6

remediation

7.7

relevance

3.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Delta Electronics CNCSoft-G2 Out-of-Bounds Write Vulnerability Allowing Code Execution

Vulnerability

Impact

Remediation

Affected Products

Delta Electronics CNCSoft-G2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating