ICS: Delta Electronics CNCSoft-G2 DOPSoft Vulnerability

Severity

High

Analysis Summary

CVE-2024-39880

Delta Electronics CNCSoft-G2 DOPSoft is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when processing files. By persuading a victim to open a specially crafted file, a remote attacker could overflow a buffer and execute arbitrary code on the system.

Impact

Buffer Overflow

Indicators of Compromise

CVE

CVE-2024-39880

Affected Vendors

Delta

Affected Products

Delta Electronics CNCSoft-G2 DOPSoft 2.0.0.5

Remediation

Upgrade to the latest version of Delta Electric Product, available from the Delta Electronics Website.

Delta Electronics Website

UAE Cybersecurity Authority Issues Alert Regarding Threats Targeting Android Users

NJRAT – Active IOCs

ICS: Delta Electronics CNCSoft-G2 DOPSoft Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan