Wecon
Products
7- 11 CVEs
- 5 CVEs
- 4 CVEs
- 3 CVEs
- 3 CVEs
- 1 CVE
- 1 CVE
Recent CVEs
24| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-14818 | Cri | 0.64 | 9.8 | 0.03 | Oct 8, 2018 | WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior have a stack-based buffer overflow vulnerability which may allow remote code execution. | ||
| CVE-2017-13999 | Cri | 0.64 | 9.8 | 0.03 | Oct 17, 2017 | A Stack-based Buffer Overflow issue was discovered in WECON LEVI Studio HMI Editor v1.8.1 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified in which the application does not verify string size before copying to memory; the attacker may then be… | ||
| CVE-2020-25181 | Hig | 0.57 | 8.8 | 0.02 | Dec 1, 2020 | WECON PLC Editor Versions 1.3.8 and prior has a heap-based buffer overflow vulnerabilities have been identified that may allow arbitrary code execution. | ||
| CVE-2020-25177 | Hig | 0.57 | 8.8 | 0.02 | Dec 1, 2020 | WECON PLC Editor Versions 1.3.8 and prior has a stack-based buffer overflow vulnerability has been identified that may allow arbitrary code execution. | ||
| CVE-2018-14810 | Hig | 0.57 | 8.8 | 0.02 | Oct 8, 2018 | WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior parse files and pass invalidated user data to an unsafe method call, which may allow code to be executed in the context of an administrator. | ||
| CVE-2018-10606 | Hig | 0.57 | 8.8 | 0.02 | Sep 26, 2018 | WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files. | ||
| CVE-2018-10602 | Hig | 0.57 | 8.8 | 0.02 | Sep 26, 2018 | WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files. | ||
| CVE-2017-6037 | Hig | 0.57 | 8.8 | 0.02 | Apr 27, 2017 | A Heap-Based Buffer Overflow issue was discovered in Wecon Technologies LEVI Studio HMI Editor before 1.8.1. This vulnerability causes a buffer overflow when a maliciously crafted project file is run by the system. | ||
| CVE-2017-6035 | Hig | 0.57 | 8.8 | 0.02 | Apr 27, 2017 | A Stack-Based Buffer Overflow issue was discovered in Wecon Technologies LEVI Studio HMI Editor before 1.8.1. This vulnerability causes a buffer overflow, which could result in denial of service when a malicious project file is run on the system. | ||
| CVE-2017-16717 | Hig | 0.56 | 8.6 | 0.02 | Dec 20, 2017 | A Heap-based Buffer Overflow issue was discovered in WECON LeviStudio HMI. The heap-based buffer overflow vulnerability has been identified, which may allow remote code execution. | ||
| CVE-2016-5781 | Hig | 0.52 | 7.8 | 0.15 | Jul 12, 2016 | Stack-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted file. | ||
| CVE-2016-4533 | Hig | 0.52 | 7.8 | 0.13 | Jul 12, 2016 | Heap-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted file. | ||
| CVE-2021-23157 | Hig | 0.51 | 7.8 | 0.08 | Jan 14, 2022 | WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code. | ||
| CVE-2021-23138 | Hig | 0.51 | 7.8 | 0.09 | Jan 14, 2022 | WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code. | ||
| CVE-2021-43983 | Hig | 0.51 | 7.8 | 0.03 | Dec 13, 2021 | WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to multiple stack-based buffer overflow instances while parsing project files, which may allow an attacker to execute arbitrary code. | ||
| CVE-2021-42707 | Hig | 0.51 | 7.8 | 0.01 | Nov 22, 2021 | PLC Editor Versions 1.3.8 and prior is vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code. | ||
| CVE-2021-42705 | Hig | 0.51 | 7.8 | 0.01 | Nov 22, 2021 | PLC Editor Versions 1.3.8 and prior is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code. | ||
| CVE-2020-25199 | Hig | 0.51 | 7.8 | 0.01 | Dec 9, 2020 | A heap-based buffer overflow vulnerability exists within the WECON LeviStudioU Release Build 2019-09-21 and prior when processing project files. Opening a specially crafted project file could allow an attacker to exploit and execute code under the privileges of the application. | ||
| CVE-2019-6541 | Hig | 0.51 | 7.8 | 0.02 | Feb 13, 2019 | A memory corruption vulnerability has been identified in WECON LeviStudioU version 1.8.56 and prior, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these vulnerabilities to NCCIC. | ||
| CVE-2019-6539 | Hig | 0.51 | 7.8 | 0.02 | Feb 13, 2019 | Several heap-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior have been identified, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these… |
- risk 0.64cvss 9.8epss 0.03
WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior have a stack-based buffer overflow vulnerability which may allow remote code execution.
- risk 0.64cvss 9.8epss 0.03
A Stack-based Buffer Overflow issue was discovered in WECON LEVI Studio HMI Editor v1.8.1 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified in which the application does not verify string size before copying to memory; the attacker may then be…
- risk 0.57cvss 8.8epss 0.02
WECON PLC Editor Versions 1.3.8 and prior has a heap-based buffer overflow vulnerabilities have been identified that may allow arbitrary code execution.
- risk 0.57cvss 8.8epss 0.02
WECON PLC Editor Versions 1.3.8 and prior has a stack-based buffer overflow vulnerability has been identified that may allow arbitrary code execution.
- risk 0.57cvss 8.8epss 0.02
WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior parse files and pass invalidated user data to an unsafe method call, which may allow code to be executed in the context of an administrator.
- risk 0.57cvss 8.8epss 0.02
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.
- risk 0.57cvss 8.8epss 0.02
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.
- risk 0.57cvss 8.8epss 0.02
A Heap-Based Buffer Overflow issue was discovered in Wecon Technologies LEVI Studio HMI Editor before 1.8.1. This vulnerability causes a buffer overflow when a maliciously crafted project file is run by the system.
- risk 0.57cvss 8.8epss 0.02
A Stack-Based Buffer Overflow issue was discovered in Wecon Technologies LEVI Studio HMI Editor before 1.8.1. This vulnerability causes a buffer overflow, which could result in denial of service when a malicious project file is run on the system.
- risk 0.56cvss 8.6epss 0.02
A Heap-based Buffer Overflow issue was discovered in WECON LeviStudio HMI. The heap-based buffer overflow vulnerability has been identified, which may allow remote code execution.
- risk 0.52cvss 7.8epss 0.15
Stack-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted file.
- risk 0.52cvss 7.8epss 0.13
Heap-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted file.
- risk 0.51cvss 7.8epss 0.08
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code.
- risk 0.51cvss 7.8epss 0.09
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code.
- risk 0.51cvss 7.8epss 0.03
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to multiple stack-based buffer overflow instances while parsing project files, which may allow an attacker to execute arbitrary code.
- risk 0.51cvss 7.8epss 0.01
PLC Editor Versions 1.3.8 and prior is vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code.
- risk 0.51cvss 7.8epss 0.01
PLC Editor Versions 1.3.8 and prior is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code.
- risk 0.51cvss 7.8epss 0.01
A heap-based buffer overflow vulnerability exists within the WECON LeviStudioU Release Build 2019-09-21 and prior when processing project files. Opening a specially crafted project file could allow an attacker to exploit and execute code under the privileges of the application.
- risk 0.51cvss 7.8epss 0.02
A memory corruption vulnerability has been identified in WECON LeviStudioU version 1.8.56 and prior, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these vulnerabilities to NCCIC.
- risk 0.51cvss 7.8epss 0.02
Several heap-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior have been identified, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these…