These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-8108 is a high-severity local privilege-related issue affecting Fuji Electric Tellus 5.0.2. According to the CISA CSAF advisory, installing Tellus adds a kernel driver that grants all users read and write permissions, which can undermine system integrity and confidentiality. The advisory was published on 2026-05-12 and does not appear in CISA KEV at this time.
A stack-based buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT-6, an industrial control system (ICS) software used for programming human-machine interface (HMI) devices. The vulnerability is triggered when the software processes a specially crafted project file, potentially allowing an attacker to execute arbitrary code on the affected system. This represents a significant risk to ope [truncated]
A heap-based buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT-6, where a maliciously crafted project file can trigger arbitrary code execution. The vulnerability was initially disclosed on November 4, 2025, and subsequently updated on December 16, 2025 (Update A), which added CVE-2025-53524 to the advisory. Fuji Electric has released a patched version (V6.2.9.0 or newer) to address th [truncated]
A high-severity out-of-bounds write vulnerability in Fuji Electric Monitouch V-SFT-6 allows arbitrary code execution when processing malicious project files. The vulnerability was disclosed by CISA on November 4, 2025, with an update on December 16, 2025 that added the CVE identifier. Fuji Electric has released patched versions V6.2.8.0 and later, with V6.2.9.0 recommended as the target update.
Fuji Electric Smart Editor is affected by a stack-based buffer overflow in versions 1.0.1.0 and earlier. The advisory states this issue may allow an attacker to execute arbitrary code. CISA published the advisory on 2025-06-17, and the supplied record does not show a CISA KEV listing.
CVE-2025-32412 is a high-severity issue in Fuji Electric Smart Editor. According to the CISA CSAF advisory published on 2025-06-17, versions 1.0.1.0 and earlier are affected by an out-of-bounds read that may allow an attacker to execute arbitrary code. Fuji Electric recommends updating to Smart Editor v1.0.2.0 or later.
CVE-2024-34579 is a stack-based buffer overflow vulnerability in Fuji Electric Alpha5 SMART servo systems, rated HIGH severity (CVSS 7.8). Published on January 16, 2025, this vulnerability allows an attacker to execute arbitrary code on affected systems. The vulnerability affects Alpha5 SMART version 4.5 and earlier. Fuji Electric has stated that this vulnerability will not be patched in the Alpha5 SMART [truncated]
A high-severity memory corruption vulnerability in Fuji Electric Tellus Lite V-Simulator enables remote code execution through malicious V8 files. The flaw stems from insufficient input validation during V8 file parsing in V-Simulator 5, allowing an out-of-bounds write that can be exploited to execute arbitrary code within the current process context. User interaction is required—targets must open a craft [truncated]
A stack-based buffer overflow in Fuji Electric Tellus Lite V-Simulator 5 allows remote attackers to execute arbitrary code when a user opens a malicious V8 file. The vulnerability stems from improper validation of user-supplied data length before copying to a fixed-length stack buffer. This requires user interaction through visiting a malicious page or opening a malicious file. CISA published initial guid [truncated]
A high-severity arbitrary code execution vulnerability in Fuji Electric Tellus Lite V-Simulator 5 (VS5Sim) allows remote attackers to execute code in the context of the current process when a user opens a malicious V8 file. The flaw stems from improper validation of user-supplied data during V8 file parsing, resulting in an out-of-bounds write. This vulnerability requires user interaction and has a CVSS 3 [truncated]
A stack-based buffer overflow vulnerability exists in Fuji Electric Tellus Lite V-Simulator 5 (VS5Sim), a simulator component packaged with the TELLUS Lite HMI/SCADA software. The flaw occurs during parsing of V8 files when user-supplied data length is not properly validated before being copied to a fixed-length stack buffer. Successful exploitation requires user interaction—the target must open a malicio [truncated]
A stack-based buffer overflow vulnerability exists in Fuji Electric Tellus Lite V-Simulator 5 (VS5Sim), a simulator component packaged with the TELLUS Lite HMI/SCADA software. The flaw occurs during parsing of V8 project files, where user-supplied data length is not properly validated before being copied to a fixed-length stack buffer. Successful exploitation requires user interaction—the target must open [truncated]
CVE-2024-11797 is a high-severity buffer overflow vulnerability in Fuji Electric Monitouch V-SFT, an HMI (Human-Machine Interface) software used in industrial control systems. The flaw exists in the parsing of V8 files, where improper validation of user-supplied data can result in a write past the end of an allocated buffer. This vulnerability requires user interaction—specifically, the target must visit [truncated]
A heap-based buffer overflow vulnerability in Fuji Electric Monitouch V-SFT allows remote attackers to execute arbitrary code when a user opens a malicious V9C file. The flaw stems from insufficient validation of user-supplied data during V9C file parsing, enabling writes beyond allocated buffer boundaries. This vulnerability requires user interaction—specifically, visiting a malicious webpage or opening [truncated]
A stack-based buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT, an industrial control system (ICS) software used for programming human-machine interfaces (HMIs). The flaw resides in the parsing of V8 project files, where insufficient validation of user-supplied data length allows an attacker to overwrite the stack buffer. Successful exploitation requires user interaction—the target mu [truncated]
A heap-based buffer overflow vulnerability in Fuji Electric Monitouch V-SFT allows remote attackers to execute arbitrary code when a user opens a malicious V10 project file. The flaw stems from insufficient validation of user-supplied data during V10 file parsing, enabling writes beyond allocated buffer boundaries. This vulnerability requires user interaction—specifically, the target must visit a maliciou [truncated]
A heap-based buffer overflow vulnerability in Fuji Electric Monitouch V-SFT allows remote attackers to execute arbitrary code when a user opens a malicious V9C file. The flaw stems from improper validation of user-supplied data during V9C file parsing, resulting in a write past the end of an allocated buffer. This vulnerability requires user interaction—specifically, the target must visit a malicious page [truncated]
A stack-based buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT, an HMI (Human-Machine Interface) development software used in industrial control systems. The flaw occurs during parsing of V8 project files, where user-supplied data length is not properly validated before being copied to a stack buffer. Successful exploitation requires user interaction—the target must open a malicious V [truncated]
A stack-based buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT, an HMI (Human-Machine Interface) development software used in industrial control systems. The flaw occurs during parsing of V8C project files, where insufficient validation of user-supplied data length allows an attacker to overwrite the stack buffer. Successful exploitation requires user interaction—the target must open [truncated]
A stack-based buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT, an industrial control system (ICS) software used for programming human-machine interfaces (HMIs). The flaw occurs during parsing of V10 project files, where user-supplied data length is not properly validated before being copied to a stack buffer. Successful exploitation requires user interaction—specifically, opening a m [truncated]
A stack-based buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT, an HMI (Human-Machine Interface) development software used in industrial control systems. The flaw occurs during parsing of V10 project files, where insufficient validation of user-supplied data length allows an attacker to overwrite the stack buffer. Successful exploitation requires user interaction—the target must open [truncated]
A stack-based buffer overflow vulnerability in Fuji Electric Monitouch V-SFT allows remote attackers to execute arbitrary code when a user opens a malicious V10 file. The flaw stems from insufficient validation of user-supplied data length before copying to a stack buffer. This vulnerability requires user interaction and results in code execution within the current process context.
A stack-based buffer overflow vulnerability in Fuji Electric Tellus Lite V-Simulator, published 2024-06-13, enables arbitrary code execution with a CVSS 3.1 score of 7.8 (HIGH). The vulnerability requires local access and user interaction, but no privileges are needed. Affected versions are prior to v4.0.20.0. Fuji Electric has released a patched version.
CVE-2024-37022 is a high-severity out-of-bounds write vulnerability in Fuji Electric Tellus Lite V-Simulator, published by CISA on June 13, 2024. The vulnerability allows an attacker to manipulate memory through local access, potentially resulting in arbitrary code execution. The CVSS 3.1 score of 7.8 reflects high impacts to confidentiality, integrity, and availability with a local attack vector requirin [truncated]
A type confusion vulnerability in Fuji Electric Monitouch V-SFT programming software, published 2024-05-30 and last modified 2025-07-18, allows local attackers to achieve code execution or crash the application. The vulnerability requires user interaction but no privileges, with CVSS 3.1 score 7.8 (HIGH). Affected versions are prior to 6.2.3.0.
CVE-2024-5271 is a high-severity vulnerability in Fuji Electric Monitouch V-SFT, an HMI (Human-Machine Interface) configuration software used in industrial control systems. The vulnerability stems from a type confusion weakness that leads to an out-of-bounds write, enabling arbitrary code execution when processing maliciously crafted files. CISA published the initial advisory on May 30, 2024, with an upda [truncated]
CVE-2024-34171 is a stack-based buffer overflow vulnerability in Fuji Electric Monitouch V-SFT, an HMI (Human-Machine Interface) programming software used in industrial control systems. The vulnerability, published by CISA on May 30, 2024, and last modified on July 18, 2025, allows an attacker to execute arbitrary code on affected systems. The CVSS 3.1 score of 7.8 (HIGH) reflects local attack vector requ [truncated]