ICSA-25-063-06
·
Published 2025-03-04
·
View on CISA ICS-CERT ↗
Delta Electronics CNCSoft-G2
CVSS 7.8
HIGH
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to execute code remotely.
CVEs (1)
Remediations
- Delta Electronics recommends users update to CNCSoft-G2 v2.1.0.20 or later.
- Delta Electronics published a product cybersecurity advisory (Delta-PCSA-2025-00003) for this issue.
- For more information, please contact Delta Electronics Customer Service.
- Delta Electronics recommends the following general cybersecurity practices:
- Don't click on untrusted Internet links or open unsolicited attachments in emails.
- Avoid exposing control systems and equipment to the Internet.
- Place systems and devices behind a firewall and isolate them from the business network.
- When remote access is required, use a secure access method, such as a virtual private network (VPN).
Affected Vendors
Delta Electronics
Affected Products (1)
Delta Electronics
·
CNCSoft-G2
<=V2.1.0.10
Affected Sectors
Energy, Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more