Vulnerabilities > CVE-2019-13522 - Out-of-bounds Write vulnerability in Ezautomation EZ PLC Editor 1.8.41

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

ezautomation

CWE-787

NVD

Published: 2019-09-04

Updated: 2024-11-21

Summary

An attacker could use a specially crafted project file to corrupt the memory and execute code under the privileges of the EZ PLC Editor Versions 1.8.41 and prior.

Vulnerable Configurations

Part	Description	Count
Application	Ezautomation Ezautomation EZ PLC Editor - Ezautomation EZ PLC Editor 1.8.41	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.us-cert.gov/ics/advisories/icsa-19-246-02
https://www.us-cert.gov/ics/advisories/icsa-19-246-02