CVE-2025-61856

Summary

A stack-based buffer overflow vulnerability exists in VS6ComFile!CV7BaseMap::WriteV7DataToRom of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end (ABEND), and arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
FUJI ELECTRIC CO., LTD. / Hakko Electronics Co., Ltd.V-SFTv6.2.7.0 and earlieraffected

Weaknesses

  • CWE-121: Stack-based buffer overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References