CVE-2025-22884

Delta Electronics ISPSoft version 3.20 is vulnerable to a Stack-Based buffer overflow vulnerability that could allow an attacker to execute arbitrary code when parsing DVP file.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00004_ISPSoft%20-%20Multiple%20Vulnerabilities_v1.pdf

Configurations

No configuration.

History

02 May 2025, 13:53

Type	Values Removed	Values Added
Summary		(es) La versión 3.20 de Delta Electronics ISPSoft es afectado por una vulnerabilidad de desbordamiento de búfer basada en pila que podría permitir a un atacante ejecutar código arbitrario al analizar un archivo DVP.

30 Apr 2025, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-30 08:15

Updated : 2025-05-02 13:53

NVD link : CVE-2025-22884

Mitre link : CVE-2025-22884

CVE.ORG link : CVE-2025-22884

JSON object : View

Products Affected

No product.

CWE

No CWE.

7.8 /10