Delta Electronics CNCSoft

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to execute code within the context of the current process.

CVEs (4)

Remediations

• Delta Electronics does not plan to address these vulnerabilities because the A-series CNC products supported by CNCSoft have been discontinued. CNCSoft will be removed from the Delta Download Center. Delta strongly recommends that users migrate to newer Delta CNC products along with their corresponding software as soon as possible.
• Delta Electronics offers the following general recommendations:
• Do not click on untrusted Internet links or open unsolicited email attachments.
• Avoid exposing control systems and equipment to the Internet.
• Place systems and devices behind a firewall and isolate them from the business network.
• When remote access is required, use a secure access method, such as a virtual private network (VPN).
• If you have any product-related support inquiries, please contact Delta through the company's portal page to request any information or materials you may need.
• Please see Delta's product cybersecurity advisory for more information about these vulnerabilities.

Affected Vendors

Affected Products (1)

Affected Sectors

Critical Manufacturing, Energy