This page lists publicly disclosed CVE vulnerabilities affecting deltaww dopsoft (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-1595 | Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82 insecurely loads libraries, which may allow an attacker to use DLL hijacking and take over the system where the software is installed. | [email protected] | 7.8 | 0.03% | 2024-02-29 | 2025-03-06 |
| CVE-2023-43824 | A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wTitleTextLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution. | [email protected] | 8.8 | 0.95% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43823 | A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wTTitleLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution. | [email protected] | 8.8 | 0.89% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43822 | A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesTimeLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution. | [email protected] | 8.8 | 0.89% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43821 | A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesActionLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution. | [email protected] | 8.8 | 0.95% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43820 | A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesPrevValueLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution. | [email protected] | 8.8 | 0.95% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43819 | A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the InitialMacroLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution. | [email protected] | 8.8 | 0.89% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43818 | A buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution. | [email protected] | 8.8 | 0.92% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43817 | A buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft version 2 when parsing the wMailContentLen field of a DPS file. An anonymous attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve code execution. | [email protected] | 7.5 | 0.10% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43816 | A buffer overflow vulnerability exists in Delta Electronics Delta Industrial Automation DOPSoft version 2 when parsing the wKPFStringLen field of a DPS file. An anonymous attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve code execution. | [email protected] | 6.3 | 0.06% | 2024-01-18 | 2024-11-21 |
| CVE-2023-43815 | A buffer overflow vulnerability exists in Delta Electronics Delta Industrial Automation DOPSoft version 2 when parsing the wScreenDESCTextLen field of a DPS file. An anonymous attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve code execution. | [email protected] | 7.1 | 0.07% | 2024-01-18 | 2024-11-21 |
| CVE-2023-5944 | Delta Electronics DOPSoft is vulnerable to a stack-based buffer overflow, which may allow for arbitrary code execution if an attacker can lead a legitimate user to execute a specially crafted file. | [email protected] | 7.8 | 0.06% | 2023-12-04 | 2024-11-21 |
| CVE-2023-4685 | Delta Electronics' CNCSoft-B version 1.0.0.4 and DOPSoft versions 4.0.0.82 and prior are vulnerable to stack-based buffer overflow, which could allow an attacker to execute arbitrary code. | [email protected] | 7.8 | 0.08% | 2023-09-07 | 2024-11-21 |
| CVE-2023-0124 | Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to an out-of-bounds write, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software. | [email protected] | 7.8 | 0.11% | 2023-02-03 | 2024-11-21 |
| CVE-2023-0123 | Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software. | [email protected] | 7.8 | 0.11% | 2023-02-03 | 2024-11-21 |
| CVE-2022-2966 | Out-of-bounds Read vulnerability in Delta Electronics DOPSoft.This issue affects DOPSoft: All Versions. | [email protected] | 3.3 | 0.18% | 2022-12-16 | 2024-11-21 |
| CVE-2021-38406 KEV | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of the current process. | [email protected] | 7.8 | 62.13% | 2021-09-17 | 2025-10-30 |
| CVE-2021-38404 | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in a heap-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process. | [email protected] | 7.8 | 0.93% | 2021-09-17 | 2024-11-21 |
| CVE-2021-38402 | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could lead to a stack-based buffer overflow while trying to copy to a buffer during font string handling. An attacker could leverage this vulnerability to execute code in the context of the current process. | [email protected] | 7.8 | 0.84% | 2021-09-17 | 2024-11-21 |
| CVE-2021-33019 | A stack-based buffer overflow vulnerability in Delta Electronics DOPSoft Version 4.00.11 and prior may be exploited by processing a specially crafted project file, which may allow an attacker to execute arbitrary code. | [email protected] | 7.8 | 0.36% | 2021-08-30 | 2024-11-21 |