CVE-2024-1595: Delta Electronics CNCSoft-B DOPSoft Uncontrolled Search Path Element

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-1595

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Delta Electronics CNCSoft-B DOPSoft Uncontrolled Search Path Element

Source: NVD (National Vulnerability Database)

Vulnerability Description

Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82 insecurely loads libraries, which may allow an attacker to use DLL hijacking and take over the system where the software is installed.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

对搜索路径元素未加控制

Source: NVD (National Vulnerability Database)

Vulnerability Title

Delta Electronics CNCSoft 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Delta Electronics CNCSoft是中国台湾台达电子（Delta Electronics）公司的一款数控机床仿真系统软件。该软件提供高性能运动控制，丰富的人机界面功能、操作人性化、稳定度高，满足高速切削的需求，架构上具有良好的弹性，方便安装与提升维护。铣床控制器、车床控制器及通用型控制器，可广泛用于各种产业机械、自动化等领域。 Delta Electronics CNCSoft-B DOPSoft v4.0.0.82之前版本存在代码问题漏洞，该漏洞源于不安全的加载库，可能允许攻击者使用DL

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Delta Electronics	CNCSoft-B v1.0.0.4 DOPSoft	0 ~ v4.0.0.82	-

II. Public POCs for CVE-2024-1595

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-1595

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same vendor: Delta Electronics

Same weakness: CWE-427

V. Comments for CVE-2024-1595

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2024-1595

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-1595

III. Intelligence Information for CVE-2024-1595

IV. Related Vulnerabilities

V. Comments for CVE-2024-1595

Leave a comment