File Parsing Issue in Delta Electronics CNCSoft-G2 Software
CVE-2025-47728

7.3HIGH

Key Information:

Vendor: Delta Electronics
Status: Cncsoft-g2
Vendor: CVE Published:; 4 June 2025

🔔 Create Delta Electronics Vulnerability Alert

What is CVE-2025-47728?

Delta Electronics CNCSoft-G2 suffers from a file parsing vulnerability, where inadequate validation of user-supplied files can lead to code execution. By opening a specially crafted malicious file, an attacker may execute arbitrary code within the context of the current process, potentially compromising the system's security. Users are urged to apply recommended updates to mitigate this risk.

Affected Version(s)

CNCSoft-G2 Windows 0 < 2.1.0.27

References

https://filecenter.deltaww.com/news/download/doc/Delta-PC...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 4, 2025
Vulnerability Reserved
May 8, 2025