Lucene search
K

5 matches found

CNVD
CNVD
added 2018/10/12 12:0 a.m.2 views

Wecon PI Studio HMI and PI Studio Buffer Overflow Vulnerability

Wecon PI Studio HMI and PI Studio are both HMI programming software from Wecon Technologies China. An out-of-bounds read vulnerability exists in Wecon PI Studio HMI version 4.1.9 and earlier and PI Studio version 4.2.34 and earlier, where the program fails to properly validate user-submitted data...

6.5CVSS8.5AI score0.01468EPSS
Exploits0References1
OSV
OSV
added 2018/10/08 12:29 p.m.2 views

CVE-2018-17889

In WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior when parsing project files, the XMLParser that ships with Wecon PIStudio is vulnerable to a XML external entity injection attack, which may allow sensitive information disclosure...

5.3CVSS5.8AI score
Exploits0References1
ICS
ICS
added 2018/10/04 12:0 a.m.553 views

WECON PI Studio (Update A)

1. EXECUTIVE SUMMARY --------- Begin Update A Part 1 of 4 --------- CVSS v3 7.8 ATTENTION: Low attack complexity --------- End Update A Part 1 of 4 --------- Vendor: WECON Technology Co., Ltd. WECON Equipment: PI Studio Vulnerabilities: Stack-based Buffer Overflow, Out-of-bounds Write,...

9.8CVSS7.9AI score0.03494EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2018/05/04 12:0 a.m.22 views

Wecon PI Studio HMI Project Programmer TextContent Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Wecon PI Studio HMI Project Programmer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists ...

4.6CVSS5AI score0.00732EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/28 12:0 a.m.4 views

Buffer Overflow Vulnerability in Multiple WECON Products

WECON LeviStudio HMI Editor and PI Studio HMI Project Programmer are both HMI programming software from WECON Technologies, China. A buffer overflow vulnerability exists in WECON LeviStudio HMI Editor and PI Studio HMI Project Programmer versions prior to November 11, 2017 . A remote attacker can...

6.8CVSS7.8AI score0.00732EPSS
Exploits0References1
Rows per page
Query Builder