CVE-2021-38406

Delta Electronics DOPSoft 2 Improper Input Validation Vulnerability

Delta Electronics DOPSoft 2 lacks proper validation of user-supplied data when parsing specific project files (improper input validation) resulting in an out-of-bounds write that allows for code execution. Vendor/Product: Delta Electronics DOPSoft 2. Added to CISA KEV 2022-08-25; required action: The impacted product is end-of-life and should be disconnected if still in use.

Category: Vulnerability, Known Exploited

Reference: NVD CVE-2021-38406