CVE-2025-47760 is a high-severity stack-based buffer overflow vulnerability affecting FUJI ELECTRIC CO., LTD.'s V-SFT software, specifically versions 6.2.5.0 and earlier. The vulnerability resides in the function VS6MemInIF!set_temp_type_default, which improperly handles input when opening specially crafted V7 or V8 project files. Exploitation occurs when a maliciously crafted file is opened by the vulnerable software, leading to a stack buffer overflow. This overflow can cause the application to crash, potentially disclose sensitive information from memory, or allow an attacker to execute arbitrary code with the privileges of the user running the software. The CVSS 3.1 base score is 7.8, indicating a high severity level. The vector string (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) shows that the attack requires local access (AV:L), low attack complexity (AC:L), no privileges (PR:N), but user interaction (UI:R) to open the malicious file. The scope is unchanged (S:U), and the impact on confidentiality, integrity, and availability is high (C:H/I:H/A:H). No known exploits are currently reported in the wild, but the vulnerability's nature makes it a significant risk, especially in industrial or critical infrastructure environments where V-SFT is used for programming or configuring automation systems. The lack of available patches at the time of publication increases the urgency for mitigation.

For European organizations, especially those in industrial automation, manufacturing, and critical infrastructure sectors, this vulnerability poses a substantial risk. V-SFT is used for programming and configuring programmable logic controllers (PLCs) and other automation devices, which are integral to operational technology (OT) environments. Successful exploitation could lead to unauthorized code execution, potentially disrupting manufacturing processes, causing equipment malfunctions, or leaking sensitive operational data. The requirement for local access and user interaction somewhat limits remote exploitation but does not eliminate risk, as insiders or attackers with physical or remote desktop access could exploit the flaw. The high impact on confidentiality, integrity, and availability means that exploitation could result in operational downtime, safety hazards, and loss of intellectual property. Given the interconnectedness of IT and OT systems in many European industries, a compromise in V-SFT could serve as a pivot point for broader network intrusion.

Organizations should immediately identify all instances of V-SFT version 6.2.5.0 and earlier within their environments. Until an official patch is released by FUJI ELECTRIC CO., LTD., the following specific mitigations are recommended: 1) Restrict access to systems running V-SFT to trusted personnel only, minimizing the risk of malicious file opening. 2) Implement strict file handling policies, including disabling the opening of untrusted or unsolicited V7/V8 project files. 3) Employ application whitelisting and endpoint protection solutions that can detect and block exploitation attempts or anomalous behavior in V-SFT processes. 4) Use network segmentation to isolate OT systems running V-SFT from general IT networks, reducing the attack surface. 5) Monitor logs and system behavior for crashes or unusual activity related to V-SFT usage. 6) Prepare for rapid deployment of patches once available by establishing communication channels with FUJI ELECTRIC and subscribing to vulnerability advisories. 7) Conduct user training to raise awareness about the risks of opening untrusted files in V-SFT.