Out-of-Bounds Write Vulnerability in V-SFT from Fujielectric
CVE-2025-61859

8.4HIGH

Key Information:

Vendor

Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd.

Status
V-sft
Vendor
CVE Published:
10 October 2025

What is CVE-2025-61859?

An out-of-bounds write vulnerability in the V-SFT application could allow an attacker to manipulate specially crafted V-SFT files. This manipulation may lead to information disclosure or cause the affected system to experience abnormal termination (ABEND). Additionally, it raises the risk of arbitrary code execution, which can compromise the integrity of the system.

Affected Version(s)

V-SFT v6.2.7.0 and earlier

References

https://monitouch.fujielectric.com/site/download-e/09vsft...
https://jvn.jp/en/vu/JVNVU90008453/

CVSS V4

Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-61859 : Out-of-Bounds Write Vulnerability in V-SFT from Fujielectric