CVE-2022-29925

Name of the Vulnerable Software and Affected Versions V-SFT versions prior to v6.1.6.0

Description The issue is related to the use of an uninitialized pointer in the simulator module of the V-SFT graphic editor. This could allow an attacker to gain unauthorized access to protected information or execute arbitrary code by having a user open a specially crafted image file.

Recommendations For versions prior to v6.1.6.0, update to version v6.1.6.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of the simulator module in the graphic editor until a patch is applied. Avoid opening specially crafted image files with the affected software to minimize the risk of exploitation.