CVE-2026-32926

HIGH

Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd. V-sft < 6.2.10.0 and prior - Information Disclosure

Title source: rule

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

References (2)

https://felib.fujielectric.co.jp/en/M10010/M20060/document_detail/5d9dd71d-9494-41a4-aa5c-8e6b8b21066b?region=en-glb

https://jvn.jp/en/vu/JVNVU90448293/

Scores

CVSS v3 7.8

EPSS 0.0001

EPSS Percentile 2.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-125

Status published

Products (2)

FUJI ELECTRIC CO., LTD. / Hakko Electronics Co., Ltd./V-SFT 6.2.10.0 and prior

fujielectric/v-sft < 6.2.10.0

Published Apr 01, 2026

Tracked Since Apr 02, 2026