WECON Security Vulnerabilities
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute...
7.8CVSS
7.7AI Score
0.025EPSS
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute...
7.8CVSS
7.5AI Score
0.012EPSS
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to multiple stack-based buffer overflow instances while parsing project files, which may allow an attacker to execute arbitrary...
7.8CVSS
7.9AI Score
0.027EPSS
PLC Editor Versions 1.3.8 and prior is vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary...
7.8CVSS
7.9AI Score
0.001EPSS
PLC Editor Versions 1.3.8 and prior is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary...
7.8CVSS
8AI Score
0.014EPSS
WECON Technology PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior lacks proper validation of user-supplied data, which may result in a read past the end of an allocated...
6.5CVSS
6.3AI Score
0.003EPSS
An out-of-bounds vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project...
8.8CVSS
8.6AI Score
0.003EPSS
An XXE vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project XML...
8.8CVSS
8.6AI Score
0.003EPSS
WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior have a stack-based buffer overflow vulnerability which may allow remote code...
9.8CVSS
9.9AI Score
0.017EPSS
In WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior when parsing project files, the XMLParser that ships with Wecon PIStudio is vulnerable to a XML external entity injection attack, which may allow sensitive information...
5.3CVSS
5.1AI Score
0.004EPSS
WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior parse files and pass invalidated user data to an unsafe method call, which may allow code to be executed in the context of an...
8.8CVSS
8.5AI Score
0.003EPSS
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project...
8.8CVSS
9.1AI Score
0.005EPSS
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project...
8.8CVSS
9AI Score
0.006EPSS
WECON PLC Editor version 1.3.3U may allow an attacker to execute code under the current process when processing project...
6.3CVSS
6.5AI Score
0.001EPSS
A buffer overflow can be triggered in LeviStudio HMI Editor, Version 1.10 part of Wecon LeviStudioU 1.8.29, and PI Studio HMI Project Programmer, Build: November 11, 2017 and prior by opening a specially crafted...
5.3CVSS
5.3AI Score
0.001EPSS
Stack-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted...
7.8CVSS
8AI Score
0.039EPSS
Heap-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted...
7.8CVSS
8AI Score
0.025EPSS