Login Sign Up

CVE-2020-27293

7.8 HIGH
Remote Code Execution

📋 TL;DR

This vulnerability in Delta Electronics CNCSoft-B allows attackers to execute arbitrary code by exploiting a type confusion issue when processing malicious project files. It affects industrial control systems using CNCSoft-B version 1.0.0.2 and earlier. Attackers could gain control of CNC machines and manufacturing equipment.

💻 Affected Systems

Products:
  • Delta Electronics CNCSoft-B
Versions: 1.0.0.2 and earlier
Operating Systems: Windows
Default Config Vulnerable: ⚠️ Yes
Notes: Affects industrial control systems in manufacturing environments. Requires processing of malicious project files.

📦 What is this software?

Cncsoft B by Deltaww

View all CVEs affecting Cncsoft B →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of CNC machines leading to physical damage, production disruption, or safety incidents through arbitrary code execution.

🟠

Likely Case

Unauthorized access to CNC systems allowing data theft, manipulation of manufacturing processes, or ransomware deployment.

🟢

If Mitigated

Limited impact through network segmentation and proper access controls preventing project file uploads.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires social engineering or existing access to upload malicious project files. No public exploit code available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 1.0.0.3 or later

Vendor Advisory: https://www.deltaww.com/en-US/Support/Downloads/Detail?code=CNCSoft-B

Restart Required: Yes

Instructions:

1. Download latest version from Delta Electronics support portal. 2. Uninstall current CNCSoft-B. 3. Install updated version. 4. Restart system.

🔧 Temporary Workarounds

Restrict Project File Processing

windows

Limit who can load project files and from which locations

Implement Windows file permissions to restrict .proj file access
Configure application whitelisting to control execution

Network Segmentation

all

Isolate CNC systems from general network traffic

Configure firewall rules to block unnecessary inbound/outbound traffic
Implement VLAN segmentation for OT networks

🧯 If You Can't Patch

  • Implement strict access controls to prevent unauthorized project file uploads
  • Monitor for suspicious file processing activities and network connections

🔍 How to Verify

Check if Vulnerable:

Check CNCSoft-B version in Help > About menu. If version is 1.0.0.2 or earlier, system is vulnerable.

Check Version:

Not applicable - check via application GUI

Verify Fix Applied:

Verify version is 1.0.0.3 or later in Help > About menu.

📡 Detection & Monitoring

Log Indicators:

  • Unusual project file loading from unexpected locations
  • Multiple failed project file parsing attempts
  • Unexpected process creation from CNCSoft-B

Network Indicators:

  • Unexpected outbound connections from CNC systems
  • File transfers to/from CNC systems outside normal patterns

SIEM Query:

source="CNCSoft-B" AND (event="FileLoad" OR event="ProcessCreate") | where file_path contains ".proj"

📊 Metadata

CVE ID: CVE-2020-27293
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-843
Published: January 11, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-27293, you might also want to check these:

CVE-2025-47151 9.8

A type confusion vulnerability in Entr'ouvert Lasso's SAML parsing allows remote code execution when...

Same vulnerability type (CWE-843)
CVE-2025-65570 9.8

A type confusion vulnerability in jsish 2.0 allows incorrect control flow during execution of the OP...

Same vulnerability type (CWE-843)
CVE-2020-25575 9.8

This vulnerability in the Rust failure crate (versions through 0.1.5) involves a type confusion flaw...

Same vulnerability type (CWE-843)