This page lists publicly disclosed CVE vulnerabilities affecting deltaww ispsoft (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-4125 | Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code when parsing ISP file. | 759f5e80-c8e1-4224-bead-956d7b33c98b | 7.8 | 0.27% | 2025-04-30 | 2025-05-16 |
| CVE-2025-4124 | Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code when parsing ISP file. | 759f5e80-c8e1-4224-bead-956d7b33c98b | 7.8 | 0.27% | 2025-04-30 | 2025-05-16 |
| CVE-2025-22884 | Delta Electronics ISPSoft version 3.20 is vulnerable to a Stack-Based buffer overflow vulnerability that could allow an attacker to execute arbitrary code when parsing DVP file. | 759f5e80-c8e1-4224-bead-956d7b33c98b | 7.8 | 0.34% | 2025-04-30 | 2025-08-25 |
| CVE-2025-22883 | Delta Electronics ISPSoft version 3.20 is vulnerable to an Out-Of-Bounds Write vulnerability that could allow an attacker to execute arbitrary code when parsing DVP file. | 759f5e80-c8e1-4224-bead-956d7b33c98b | 7.8 | 0.27% | 2025-04-30 | 2025-05-16 |
| CVE-2025-22882 | Delta Electronics ISPSoft version 3.20 is vulnerable to a Stack-Based buffer overflow vulnerability that could allow an attacker to leverage debugging logic to execute arbitrary code when parsing CBDGL file. | 759f5e80-c8e1-4224-bead-956d7b33c98b | 7.8 | 0.35% | 2025-04-30 | 2025-08-25 |
| CVE-2023-5131 | A heap buffer-overflow exists in Delta Electronics ISPSoft. An anonymous attacker can exploit this vulnerability by enticing a user to open a specially crafted DVP file to achieve code execution. | [email protected] | 8.2 | 0.82% | 2024-01-18 | 2024-11-21 |
| CVE-2020-27280 | A use after free issue has been identified in the way ISPSoft(v3.12 and prior) processes project files, allowing an attacker to craft a special project file that may allow arbitrary code execution. | [email protected] | 7.8 | 1.25% | 2021-01-26 | 2024-11-21 |
| CVE-2018-14800 | Delta Electronics ISPSoft version 3.0.5 and prior allow an attacker, by opening a crafted file, to cause the application to read past the boundary allocated to a stack object, which could allow execution of code under the context of the application. | [email protected] | 7.8 | 1.63% | 2018-10-03 | 2024-11-21 |