EUVD-2024-42285

Malicious code in bioql PyPI...

EUVD-2023-26587

Malicious code in bioql PyPI...

EUVD-2023-45876

Malicious code in bioql PyPI...

CVE-2024-47134

Out-of-bounds write vulnerability exists in Kostac PLC Programming Software Former name: Koyo PLC Programming Software Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a...

CVE-2024-47134

Out-of-bounds write vulnerability exists in Kostac PLC Programming Software Former name: Koyo PLC Programming Software Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a...

CVE-2024-47135

Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software Former name: Koyo PLC Programming Software Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may...

CVE-2024-47134

Summary of CVE-2024-47134 and related advisories : Kostac PLC Programming Software (formerly Koyo PLC Programming Software)

CVE-2023-41374

Summary: CVE-2023-41374 is a double-free vulnerability in Kostac PLC Programming Software (KPP) versions 1.6.11.0 and earlier, related to parsing of KPP project files. If a user opens a specially crafted project file saved with 1.6.9.0 or earlier, arbitrary code execution may occur. Mitigation: s...

CVE-2023-41374

Double free issue exists in Kostac PLC Programming Software Version 1.6.11.0 and earlier. Arbitrary code may be executed by having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier because the issue exists in parsing of...

PT-2023-5518 · Kostac · Kostac Plc Programming

Name of the Vulnerable Software and Affected Versions: Kostac PLC Programming Software versions 1.6.9.0 and earlier Kostac PLC Programming Software version 1.6.11.0 Description: The issue is related to a use after free vulnerability, which can be exploited by opening a specially crafted project...

JTEKT ELECTRONICS Kostac PLC Programming Software

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: JTEKT ELECTRONICS CORPORATION Equipment: Kostac PLC Programming Software Vulnerabilities: Out-of-bounds Read, Use After Free 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to...

CVE-2023-22424

Use-after-free vulnerability exists in Kostac PLC Programming Software Former name: Koyo PLC Programming Software Version 1.6.9.0 and earlier. With the abnormal value given as the maximum number of columns for the PLC program, the process accesses the freed memory. As a result, opening a speciall...

CVE-2023-22424

Use-after-free vulnerability exists in Kostac PLC Programming Software Former name: Koyo PLC Programming Software Version 1.6.9.0 and earlier. With the abnormal value given as the maximum number of columns for the PLC program, the process accesses the freed memory. As a result, opening a speciall...

CVE-2023-22424

Use-after-free vulnerability exists in Kostac PLC Programming Software Former name: Koyo PLC Programming Software Version 1.6.9.0 and earlier. With the abnormal value given as the maximum number of columns for the PLC program, the process accesses the freed memory. As a result, opening a speciall...

CVE-2023-22419

Kostac PLC Programming Software (JTEKT Kostac) versions 1.6.9.0 and earlier are affected by CVE-2023-22419. The issue is an out-of-bounds read occurring while processing a comment block in stage information, due to end-of-data verification failure. This can lead to information disclosure and/or a...

PT-2023-1669 · Unknown · Kostac Plc Programming

Name of the Vulnerable Software and Affected Versions: Kostac PLC Programming Software versions 1.6.9.0 and earlier Description: The issue is related to an out-of-bounds read vulnerability that occurs when processing a comment block in stage information. This can lead to information disclosure...