Out-of-Bounds Read Vulnerability in V-SFT 6.2.7.0 by Fuji Electric
CVE-2025-61861

8.4HIGH

Key Information:

Vendor: Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd.
Status: V-sft
Vendor: CVE Published:; 10 October 2025

🔔 Create Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd. Vulnerability Alert

What is CVE-2025-61861?

An out-of-bounds read vulnerability has been identified in the VS6ComFile!load_link_inf feature of V-SFT, specifically affecting version 6.2.7.0 and earlier. This flaw allows attackers to exploit specially crafted V-SFT files, potentially leading to unauthorized information disclosure, abnormal termination of the affected system (known as ABEND), and the possibility of arbitrary code execution. Users of V-SFT are advised to take caution and apply necessary security measures to mitigate the risks associated with this vulnerability.

Affected Version(s)

V-SFT v6.2.7.0 and earlier

References

https://monitouch.fujielectric.com/site/download-e/09vsft...

https://jvn.jp/en/vu/JVNVU90008453/

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 10, 2025
Vulnerability Reserved
Oct 2, 2025

JSON