Filtered by vendor We-con
Subscriptions
Total
30 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-23157 | 1 We-con | 1 Levistudiou | 2024-09-17 | 7.8 High |
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code. | ||||
CVE-2018-14818 | 1 We-con | 2 Pi Studio, Pi Studio Hmi | 2024-09-17 | 9.8 Critical |
WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior have a stack-based buffer overflow vulnerability which may allow remote code execution. | ||||
CVE-2018-10614 | 1 We-con | 1 Levistudiou | 2024-09-17 | N/A |
An XXE vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project XML files. | ||||
CVE-2021-43983 | 1 We-con | 1 Levistudiou | 2024-09-17 | 7.8 High |
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to multiple stack-based buffer overflow instances while parsing project files, which may allow an attacker to execute arbitrary code. | ||||
CVE-2018-17889 | 1 We-con | 2 Pi Studio, Pi Studio Hmi | 2024-09-17 | N/A |
In WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior when parsing project files, the XMLParser that ships with Wecon PIStudio is vulnerable to a XML external entity injection attack, which may allow sensitive information disclosure. | ||||
CVE-2019-6541 | 1 We-con | 1 Levistudiou | 2024-09-17 | 7.8 High |
A memory corruption vulnerability has been identified in WECON LeviStudioU version 1.8.56 and prior, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these vulnerabilities to NCCIC. | ||||
CVE-2018-10606 | 1 We-con | 1 Levistudiou | 2024-09-16 | 8.8 High |
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files. | ||||
CVE-2019-6537 | 1 We-con | 1 Levistudiou | 2024-09-16 | 7.8 High |
Multiple stack-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior may be exploited when parsing strings within project files. The process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage these vulnerabilities to execute code under the context of the current process. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these vulnerabilities to NCCIC. | ||||
CVE-2018-7527 | 1 We-con | 3 Levistudio Hmi Editor, Levistudiou, Pi Studio Hmi Project Programmer | 2024-09-16 | N/A |
A buffer overflow can be triggered in LeviStudio HMI Editor, Version 1.10 part of Wecon LeviStudioU 1.8.29, and PI Studio HMI Project Programmer, Build: November 11, 2017 and prior by opening a specially crafted file. | ||||
CVE-2018-10610 | 1 We-con | 1 Levistudiou | 2024-09-16 | N/A |
An out-of-bounds vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project files. | ||||
CVE-2021-23138 | 1 We-con | 1 Levistudiou | 2024-09-16 | 7.8 High |
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code. | ||||
CVE-2018-14792 | 1 We-con | 1 Plc Editor | 2024-09-16 | N/A |
WECON PLC Editor version 1.3.3U may allow an attacker to execute code under the current process when processing project files. | ||||
CVE-2021-42707 | 1 We-con | 1 Plc Editor | 2024-09-16 | 7.8 High |
PLC Editor Versions 1.3.8 and prior is vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code. | ||||
CVE-2021-42705 | 1 We-con | 1 Plc Editor | 2024-09-16 | 7.8 High |
PLC Editor Versions 1.3.8 and prior is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code. | ||||
CVE-2019-6539 | 1 We-con | 1 Levistudiou | 2024-09-16 | 7.8 High |
Several heap-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior have been identified, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these vulnerabilities to NCCIC. | ||||
CVE-2018-10602 | 1 We-con | 1 Levistudiou | 2024-09-16 | 8.8 High |
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files. | ||||
CVE-2018-14810 | 1 We-con | 2 Pi Studio, Pi Studio Hmi | 2024-09-16 | N/A |
WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior parse files and pass invalidated user data to an unsafe method call, which may allow code to be executed in the context of an administrator. | ||||
CVE-2017-16739 | 1 We-con | 2 Levistudio Hmi Editor, Levistudio Hmi Editor Firmware | 2024-08-05 | N/A |
An issue was discovered in WECON Technology LEVI Studio HMI Editor v1.8.29 and prior. Specially-crafted malicious files may be able to cause stack-based buffer overflow vulnerabilities, which may allow remote code execution. | ||||
CVE-2017-16737 | 1 We-con | 2 Levistudio Hmi Editor, Levistudio Hmi Editor Firmware | 2024-08-05 | N/A |
An issue was discovered in WECON Technology LEVI Studio HMI Editor v1.8.29 and prior. A specially-crafted malicious file may be able to cause a heap-based buffer overflow vulnerability when opened by a user. | ||||
CVE-2017-16717 | 1 We-con | 1 Levi Studio Hmi | 2024-08-05 | N/A |
A Heap-based Buffer Overflow issue was discovered in WECON LeviStudio HMI. The heap-based buffer overflow vulnerability has been identified, which may allow remote code execution. |