CVE-2022-30546

Name of the Vulnerable Software and Affected Versions V-SFT versions prior to v6.1.6.0

Description An out-of-bounds read issue exists in the simulator module of the graphic editor V-SFT. This may allow an attacker to obtain information and/or execute arbitrary code by having a user open a specially crafted image file.

Recommendations For versions prior to v6.1.6.0, update to version v6.1.6.0 or later to resolve the issue. As a temporary workaround, consider avoiding the use of the simulator module in V-SFT until a patch is applied. Restrict access to opening image files from untrusted sources to minimize the risk of exploitation.