CVE-2025-47749

HIGH Year: 2025
CVSS v3 Score
7.8
High
Weakness Type
CWE-761
View all →

Vulnerability Description

V-SFT v6.2.5.0 and earlier contains an issue with free of pointer not at start of buffer in VS6EditData.dll!CWinFontInf::WinFontMsgCheck function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution.

Related Vulnerabilities

CVE-2024-31413

MEDIUM
CVSS:5.9(Medium)

Free of pointer not at start of buffer vulnerability exists in CX-One CX-One CXONE-AL[][]D-V4 (The version which was installed with a DVD ver. 4.61.1 or lower, and was updated through CX-One V4 auto u...

CWE-7612024

CVE-2024-31413

MEDIUM
CVSS:5.9(Medium)

Free of pointer not at start of buffer vulnerability exists in CX-One CX-One CXONE-AL[][]D-V4 (The version which was installed with a DVD ver. 4.61.1 or lower, and was updated through CX-One V4 auto u...

CWE-7612024