THREATOPS
THREAT OPSCVEs › CVE-2021-38406

CVE-2021-38406 — Delta Electronics DOPSoft 2 Improper Input Validation Vulnerability

CISA KEVExploited: confirmedDelta Electronics

Delta Electronics DOPSoft 2 lacks proper validation of user-supplied data when parsing specific project files (improper input validation) resulting in an out-of-bounds write that allows for code execution.

Vulnerability details