CVE-2020-6976
First published: Wed Mar 18 2020(Updated: )
Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. An out-of-bounds read overflow can be exploited when a valid user opens a specially crafted, malicious input file due to the lack of validation.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Deltaww Cncsoft Screeneditor | <=1.00.96 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Delta Industrial Automation CNCSoft ScreenEditor vulnerability?
The vulnerability ID for this Delta Industrial Automation CNCSoft ScreenEditor vulnerability is CVE-2020-6976.
What is the severity of CVE-2020-6976?
The severity of CVE-2020-6976 is medium with a severity value of 5.5.
How does the vulnerability occur in Delta Industrial Automation CNCSoft ScreenEditor?
In Delta Industrial Automation CNCSoft ScreenEditor, the vulnerability occurs when a valid user opens a specially crafted, malicious input file due to the lack of validation.
What software version is affected by this vulnerability?
The vulnerability affects Delta Industrial Automation CNCSoft ScreenEditor version 1.00.96 and prior.
Is there a fix available for this vulnerability?
At the time of writing, there is no information available about a fix for this vulnerability. It is recommended to follow the guidance provided by the vendor or ics-cert.gov for updates and patches.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/references
- agent/weakness
- agent/severity
- agent/tags
- agent/softwarecombine
- agent/author
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/deltaww
- canonical/deltaww cncsoft screeneditor
- version/deltaww cncsoft screeneditor/1.00.96