CVE-2022-4634

Summary

All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01.5 and prior) are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
Delta Industrial AutomationScreenEditorall versions <= 1.01.5affected
Delta Industrial AutomationCNCSoftall versions < v1.01.34affected

Weaknesses

  • CWE-121: CWE-121

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References