Axt

**Name of the Vulnerable Software and Affected Versions** Eaton ELCSoft versions 2.04.02 and prior **Description** The issue allows remote execution of arbitrary code through buffer overflow caused by specially crafted files. **Recommendations** For Eaton ELCSoft versions 2.04.02 and prior, update to a version later than 2.04.02 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WPLSoft in Delta Electronics versions 2.45.0 and prior **Description** The issue is related to a heap-based buffer overflow in the dvp file parsing functionality. This occurs when a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or cause the application to crash. **Recommendations** For versions 2.45.0 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics WPLSoft versions 2.45.0 and prior **Description** The issue is related to out-of-bounds write and heap-based buffer overflow in the dvp file parsing functionality, potentially leading to memory corruption or remote code execution. **Recommendations** For versions 2.45.0 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics WPLSoft versions prior to V2.42.11 Delta Electronics ISPSoft versions prior to 3.02.11 Delta Electronics PMSoft versions prior to 2.10.10 **Description** An issue was discovered in the software, where multiple instances of out-of-bounds write conditions may allow malicious files to be read and executed by the affected software. This could potentially lead to remote code execution. **Recommendations** For Delta Electronics WPLSoft versions prior to V2.42.11, update to version V2.42.11 or later. For Delta Electronics ISPSoft versions prior to 3.02.11, update to version 3.02.11 or later. For Delta Electronics PMSoft versions prior to 2.10.10, update to version 2.10.10 or later.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics WPLSoft versions prior to V2.42.11 Delta Electronics ISPSoft versions prior to 3.02.11 Delta Electronics PMSoft versions prior to 2.10.10 **Description** The issue is related to multiple instances of heap-based buffer overflows. These overflows may allow malicious files to cause the execution of arbitrary code or a denial of service. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. **Recommendations** For Delta Electronics WPLSoft versions prior to V2.42.11, update to version V2.42.11 or later. For Delta Electronics ISPSoft versions prior to 3.02.11, update to version 3.02.11 or later. For Delta Electronics PMSoft versions prior to 2.10.10, update to version 2.10.10 or later.