Out-of-bounds Read Vulnerability in V-SFT by Fuji Electric
CVE-2025-47753

8.4HIGH

Key Information:

Vendor

Fuji Electric Co., Ltd.

Status
V-sft
Vendor
CVE Published:
19 May 2025

What is CVE-2025-47753?

V-SFT versions 6.2.5.0 and earlier are susceptible to an out-of-bounds read vulnerability within the VS6EditData!CDrawSLine::GetRectArea function. When processing specially crafted V7 or V8 files, this issue can result in application crashes, unauthorized information disclosure, and the potential for arbitrary code execution.

Affected Version(s)

V-SFT v6.2.5.0 and earlier

References

https://monitouch.fujielectric.com/site/download-e/09vsft...
https://jvn.jp/en/vu/JVNVU97228144/

CVSS V4

Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.