Description
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can manipulate users to visit a malicious page or file to leverage this vulnerability to execute code in the context of the current process.
INFO
Published Date :
2024-10-10T17:16:51.747Z
Last Modified :
2024-10-10T17:42:30.381Z
Source :
icscert
AFFECTED PRODUCTS
The following products are affected by CVE-2024-47964 vulnerability.
| Vendors | Products |
|---|---|
| Delta Electronics |
|
| Deltaww |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2024-47964.
CVSS Vulnerability Scoring System
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact