Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.8
CNCSoft-G2 Fails to Safely Open User-Provided Files
CVE-2026-3094
Summary
A bug in CNCSoft-G2 can allow an attacker to execute malicious code on your computer if you open a specially crafted file. This could lead to unauthorized access to your system or data. Update CNCSoft-G2 to the latest version to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| deltaww | cncsoft-g2 | <= 2.1.0.39 | – |
Original title
Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the c...
Original description
Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
nvd CVSS3.1
7.8
Vulnerability type
CWE-787
Out-of-bounds Write
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026