V Sft

v-sft

Vendor: Fujielectric • 11 CVEs

CVEs (11)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-32929 1Fujielectric 1V Sft Apr 7, 2026 Apr 1, 2026 8.4 HIGH· v4 5.5 MEDIUM· v3 N/A· v2 V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.
CVE-2026-32928 1Fujielectric 1V Sft Apr 7, 2026 Apr 1, 2026 8.4 HIGH· v4 7.8 HIGH· v3 N/A· v2 V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
CVE-2026-32927 1Fujielectric 1V Sft Apr 7, 2026 Apr 1, 2026 8.4 HIGH· v4 5.5 MEDIUM· v3 N/A· v2 V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.
CVE-2026-32926 1Fujielectric 1V Sft Apr 7, 2026 Apr 1, 2026 8.4 HIGH· v4 5.5 MEDIUM· v3 N/A· v2 V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.
CVE-2026-32925 1Fujielectric 1V Sft Apr 7, 2026 Apr 1, 2026 8.4 HIGH· v4 7.8 HIGH· v3 N/A· v2 V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CV7BaseMap::WriteV7DataToRom. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
CVE-2022-46360 1Fujielectric 2Tellus V Sft Apr 10, 2025 Jan 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds read vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted...Show more Out-of-bounds read vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file.Show less
CVE-2022-43448 1Fujielectric 2Tellus V Sft Apr 10, 2025 Jan 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds write vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafte...Show more Out-of-bounds write vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file.Show less
CVE-2022-29925 1Fujielectric 1V Sft Nov 21, 2024 Jun 14, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Access of uninitialized pointer vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary...Show more Access of uninitialized pointer vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.Show less
CVE-2022-29522 1Fujielectric 2V Server V Sft Nov 21, 2024 Jun 14, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Use after free vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a...Show more Use after free vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.Show less
CVE-2022-29506 1Fujielectric 2V Server V Sft Nov 21, 2024 Jun 14, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Out-of-bounds read vulnerability exist in the simulator module contained in the graphic editor 'V-SFT' v6.1.3.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a use...Show more Out-of-bounds read vulnerability exist in the simulator module contained in the graphic editor 'V-SFT' v6.1.3.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.Show less
CVE-2022-26302 1Fujielectric 1V Sft Nov 21, 2024 Jun 14, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Heap-based buffer overflow exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a us...Show more Heap-based buffer overflow exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.Show less