Lucene search
K
We-conPlc Editor

6 matches found

CVE
CVE
added 2021/11/22 7:6 p.m.77 views

CVE-2021-42705

CVE-2021-42705 affects WECON PLC Editor (Versions 1.3.8 and earlier). The vulnerability is a stack-based buffer overflow occurring while processing WCP/project files, leading to arbitrary code execution in the context of the affected process. Public sources (ZDI/CISA ICS advisory) describe the fl...

7.8CVSS8AI score0.00973EPSS
CVE
CVE
added 2021/11/22 7:4 p.m.65 views

CVE-2021-42707

PLC Editor (WECON) versions 1.3.8 and earlier are affected by an out-of-bounds write in the WCP/project-file parsing flow (CWE-787), which may allow arbitrary code execution. Several sources describe this as memory corruption during WCP file parsing; some references note remote-code-execution pot...

7.8CVSS7.9AI score0.00912EPSS
CVE
CVE
added 2019/12/23 7:23 p.m.52 views

CVE-2019-18236

CVE-2019-18236 affects WECON PLC Editor (Version 1.3.5_20190129). The vulnerability is a stack-based buffer overflow in the PLC Editor when processing project files (notably WCP data elements such as PortPath/Port), caused by handling of fixed-length buffers. Successful exploitation could allow c...

7.8CVSS7.9AI score0.02791EPSS
CVE
CVE
added 2020/12/01 2:54 p.m.52 views

CVE-2020-25181

Affected product: WECON PLC Editor (Versions 1.3.8 and prior). CVE-2020-25181 is a heap-based buffer overflow in the WCP file parsing path that may lead to arbitrary code execution. ZDI advisories describe remote code execution requiring user interaction (visit a malicious page or open a maliciou...

8.8CVSS9.3AI score0.01972EPSS
CVE
CVE
added 2018/09/19 3:0 p.m.49 views

CVE-2018-14792

Affected product: WECON PLC Editor (version 1.3.3U). The CVE-2018-14792 entry describes a stack-based buffer overflow when processing project files, potentially allowing code execution within the current process. Details from connected sources identify the vulnerability as CWE-121 with a CVSS v3 ...

6.8CVSS6.5AI score0.01347EPSS
CVE
CVE
added 2020/12/01 2:54 p.m.49 views

CVE-2020-25177

CVE-2020-25177 affects WECON PLC Editor Versions 1.3.8 and prior. The vulnerability is a stack-based buffer overflow in WCP file parsing that may allow arbitrary code execution. ZDI describes it as remote code execution requiring user interaction via malicious WCP content, due to inadequate lengt...

8.8CVSS9.1AI score0.01749EPSS