CVE-2025-50130 HIGH

CVE-2025-50130

Vendor Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd.
Product V-SFT-6
Weakness CWE-122
Published July 8, 2025
Last update July 8, 2025

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A heap-based buffer overflow vulnerability exists in VS6Sim.exe contained in V-SFT and TELLUS provided by FUJI ELECTRIC CO., LTD. Opening V9 files or X1 files specially crafted by an attacker on the affected product may lead to arbitrary code execution.

Key dates

02Disclosure timeline

July 8, 2025 CVE published
July 8, 2025 Record updated