CVE-2024-12858

Опубликовано: 13 мар. 2025

Источник: nvd

Описание

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. *** Duplicate of CVE-2025-22880

Связанные уязвимости

GHSA-422f-jgv4-f2gf

CVSS3: 7.8

github

11 месяцев назад

Delta Electronics CNCSoft-G2 Version 2.1.0.16 and prior lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.