ZDI-26-234 HIGH 7.8 Published Mar 30, 2026

Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Digilent

Digilent DASYLab contains a remote code execution vulnerability (CVE-2026-0956) that allows attackers to execute arbitrary code on affected systems when users visit a malicious webpage or open a malicious file. This high-severity flaw (CVSS 7.8) requires user interaction to exploit but could give attackers complete control over compromised machines. Security teams should prioritize patching DASYLab installations and educating users to avoid opening untrusted files or visiting suspicious websites.

Related CVEs

CVE-2026-0956

Tags

RCE Remote Code Execution File Upload

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy