CVE-2026-32928

CVSS 8.4 HIGHEPSS 0.2%CWE-121

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products

FUJI ELECTRIC CO., LTD. / Hakko Electronics Co., Ltd. · V-SFT

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://felib.fujielectric.co.jp/en/M10010/M20060/document_detail/5d9dd71d-9494-41a4-aa5c-8e6b8b21066b?region=en-glb https://jvn.jp/en/vu/JVNVU90448293/