ZDI-26-296: Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Kurzinfo

Veroeffentlicht: 2026-04-23 05:00 UTC Importiert: 2026-05-14 23:39 UTC CVSS: 7.8 Quelle-ID: zdi_pub uid_hash: 6084d86c3598b3e385cd37c3a9996902df4146edf09f96dcf4d7f5f569135f91

Zero Day Initiative (Published)

Inhalt

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics ASDA-Soft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2026-5726.

Verknuepfte CVEs

CVE-ID	Severity (CVE.org)	CVSS (CVE.org)	EPSS	EPSS-%	Veroeffentlicht (CVE.org)
CVE-2026-5726	HIGH	7.8	-	-	2026-04-08

Quellen-Details

Bezeichnung	Name	Kategorie	Tags	Zielgruppe	Sprache	Feed-URL
Zero Day Initiative (Published)	zdi_pub	threat_intel		-	de	https://www.zerodayinitiative.com/rss/published/

Zurueck zur Eintrags-Liste