{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-5726", "assignerOrgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "state": "PUBLISHED", "assignerShortName": "Deltaww", "dateReserved": "2026-04-07T08:41:00.448Z", "datePublished": "2026-04-08T01:46:51.352Z", "dateUpdated": "2026-04-08T15:58:11.280Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "shortName": "Deltaww", "dateUpdated": "2026-04-08T01:46:51.352Z"}, "title": "ASDA-Soft Stack-based Buffer Overflow Vulnerability", "datePublic": "2026-04-08T01:25:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-121", "description": "CWE-121 Stack-based Buffer Overflow", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "affected": [{"vendor": "DeltaWW", "product": "ASDA-Soft", "platforms": ["Windows"], "versions": [{"status": "affected", "version": "0", "lessThanOrEqual": "7.2.2.0", "versionType": "custom"}], "defaultStatus": "unaffected"}], "cpeApplicability": [{"operator": "OR", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:deltaww:asda-soft:*:*:windows:*:*:*:*:*", "versionStartIncluding": "0", "versionEndIncluding": "7.2.2.0"}]}]}], "descriptions": [{"lang": "en", "value": "ASDA-Soft Stack-based Buffer Overflow Vulnerability", "supportingMedia": [{"type": "text/html", "base64": false, "value": "ASDA-Soft Stack-based Buffer Overflow Vulnerability"}]}], "references": [{"url": "https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2026-00007_ASDA-Soft%20Stack-based%20Buffer%20Overflow%20Vulnerability%20(CVE-2026-5726).pdf"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}], "solutions": [{"lang": "en", "value": "Download and update to: ASDA-Soft v7.2.6.0 or later (Delta Download Center)", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Download and update to: ASDA-Soft v7.2.6.0 or later (Delta Download Center)<br>"}]}], "credits": [{"lang": "en", "value": "CISA", "type": "coordinator"}, {"lang": "en", "value": "Zero Day Initiative (ZDI)", "type": "reporter"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-08T15:57:58.781751Z", "id": "CVE-2026-5726", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-08T15:58:11.280Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-5726", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-08T15:57:58.781751Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-08T15:58:05.530Z"}}], "cna": {"title": "ASDA-Soft Stack-based Buffer Overflow Vulnerability", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "coordinator", "value": "CISA"}, {"lang": "en", "type": "reporter", "value": "Zero Day Initiative (ZDI)"}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "DeltaWW", "product": "ASDA-Soft", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "7.2.2.0"}], "platforms": ["Windows"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Download and update to: ASDA-Soft v7.2.6.0 or later (Delta Download Center)", "supportingMedia": [{"type": "text/html", "value": "Download and update to: ASDA-Soft v7.2.6.0 or later (Delta Download Center)<br>", "base64": false}]}], "datePublic": "2026-04-08T01:25:00.000Z", "references": [{"url": "https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2026-00007_ASDA-Soft%20Stack-based%20Buffer%20Overflow%20Vulnerability%20(CVE-2026-5726).pdf"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "ASDA-Soft Stack-based Buffer Overflow Vulnerability", "supportingMedia": [{"type": "text/html", "value": "ASDA-Soft Stack-based Buffer Overflow Vulnerability", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-121", "description": "CWE-121 Stack-based Buffer Overflow"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:deltaww:asda-soft:*:*:windows:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "7.2.2.0", "versionStartIncluding": "0"}], "operator": "OR"}], "operator": "OR"}], "providerMetadata": {"orgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "shortName": "Deltaww", "dateUpdated": "2026-04-08T01:46:51.352Z"}}}, "cveMetadata": {"cveId": "CVE-2026-5726", "state": "PUBLISHED", "dateUpdated": "2026-04-08T15:58:11.280Z", "dateReserved": "2026-04-07T08:41:00.448Z", "assignerOrgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "datePublished": "2026-04-08T01:46:51.352Z", "assignerShortName": "Deltaww"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "ASDA-Soft Stack-based Buffer Overflow Vulnerability"}], "id": "CVE-2026-5726", "lastModified": "2026-04-08T21:26:35.910", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "759f5e80-c8e1-4224-bead-956d7b33c98b", "type": "Secondary"}]}, "published": "2026-04-08T03:16:07.700", "references": [{"source": "759f5e80-c8e1-4224-bead-956d7b33c98b", "url": "https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2026-00007_ASDA-Soft%20Stack-based%20Buffer%20Overflow%20Vulnerability%20(CVE-2026-5726).pdf"}], "sourceIdentifier": "759f5e80-c8e1-4224-bead-956d7b33c98b", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-121"}], "source": "759f5e80-c8e1-4224-bead-956d7b33c98b", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": ["windows"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,7.2.2.0]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "inferred", "scores": [{"score": 100.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "ASDA-Soft", "source": "cna", "vendor": "DeltaWW"}, "product": "asda_soft", "vendor": "deltaww"}], "analysis": {"en": {"generated_at": "2026-04-08T03:51:04.740024+00:00", "value": {"mitigation_remediation": ["Update DeltaWW ASDA-Soft to version 7.2.6.0 or later using the Delta Download Center.", "Verify the update by checking the product version and conducting a functional test.", "If an update cannot be applied immediately, isolate the affected systems from external networks until a patch is installed."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The flaw affects all DeltaWW ASDA\u2011Soft installations. While specific vulnerable releases are not listed, the vendor recommends upgrading to ASDA\u2011Soft version 7.2.6.0 or later.", "description_and_impact": "A stack-based buffer overflow flaw is present in ASDA-Soft, allowing an attacker to overwrite critical stack data and potentially gain arbitrary code execution. The weakness corresponds to CWE\u2011121 and can compromise confidentiality, integrity, and availability.", "risk_and_exploitability": "The CVSS score of 7.8 indicates high severity, suggesting that exploitation could lead to full compromise of the affected system. EPSS data is not available, and the issue is not listed in the CISA KEV catalog. As a buffer overflow, the likely attack vector is through unauthenticated or authenticated input that can be controlled by an adversary; the exact conditions for exploitation are not detailed."}}}}, "created": "2026-04-08T19:33:32.430663+00:00", "updated": "2026-04-08T19:44:10.581999+00:00", "vendors": ["deltaww", "deltaww$PRODUCT$asda_soft"]}