ГлавнаяУязвимости → CVE-2025-47749
7.8высокая

CVE-2025-47749

Описание

V-SFT v6.2.5.0 and earlier contains an issue with free of pointer not at start of buffer in VS6EditData.dll!CWinFontInf::WinFontMsgCheck function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution.

Затрагиваемое ПО
Fujielectric Monitouch v-sft
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://jvn.jp/en/vu/JVNVU97228144/https://monitouch.fujielectric.com/site/download-e/09vsft6_inf/Search.php