Out-of-Bounds Write Vulnerability in V-SFT Software by Fuji Electric
CVE-2025-47750

8.4HIGH

Key Information:

Vendor: Fuji Electric Co., Ltd.
Status: V-sft
Vendor: CVE Published:; 19 May 2025

🔔 Create Fuji Electric Co., Ltd. Vulnerability Alert

What is CVE-2025-47750?

A vulnerability exists in V-SFT v6.2.5.0 and earlier versions, which allows for an out-of-bounds write in the VS6MemInIF!set_temp_type_default function. Exploiting this issue by opening specially crafted V7 or V8 files could lead to application crashes, unauthorized information disclosure, and potential arbitrary code execution.

Affected Version(s)

V-SFT v6.2.5.0 and earlier

References

https://monitouch.fujielectric.com/site/download-e/09vsft...

https://jvn.jp/en/vu/JVNVU97228144/

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 19, 2025
Vulnerability Reserved
May 9, 2025