Vulnerabilities > Fatek

DATE CVE VULNERABILITY TITLE RISK
2021-04-12 CVE-2021-27486 Unspecified vulnerability in Fatek Winproladder 3.28/3.30
FATEK Automation WinProladder Versions 3.30 and prior is vulnerable to an integer underflow, which may cause an out-of-bounds write and allow an attacker to execute arbitrary code.
local
low complexity
fatek
7.8
2021-03-03 CVE-2021-22683 Out-of-bounds Write vulnerability in Fatek Fvdesigner 1.1/1.1.2/1.5.76
Fatek FvDesigner Version 1.5.76 and prior is vulnerable to an out-of-bounds write while processing project files, allowing an attacker to craft a special project file that may permit arbitrary code execution.
local
low complexity
fatek CWE-787
7.8
2021-03-03 CVE-2021-22670 Access of Uninitialized Pointer vulnerability in Fatek Fvdesigner 1.1/1.1.2/1.5.76
An uninitialized pointer may be exploited in Fatek FvDesigner Version 1.5.76 and prior while the application is processing project files, allowing an attacker to craft a special project file that may permit arbitrary code execution.
local
low complexity
fatek CWE-824
7.8
2021-03-03 CVE-2021-22666 Out-of-bounds Write vulnerability in Fatek Fvdesigner 1.1/1.1.2/1.5.76
Fatek FvDesigner Version 1.5.76 and prior is vulnerable to a stack-based buffer overflow while project files are being processed, allowing an attacker to craft a special project file that may permit arbitrary code execution.
local
low complexity
fatek CWE-787
7.8
2021-03-03 CVE-2021-22662 Use After Free vulnerability in Fatek Fvdesigner 1.1/1.1.2/1.5.76
A use after free issue has been identified in Fatek FvDesigner Version 1.5.76 and prior in the way the application processes project files, allowing an attacker to craft a special project file that may permit arbitrary code execution.
local
low complexity
fatek CWE-416
7.8
2021-03-03 CVE-2021-22638 Out-of-bounds Read vulnerability in Fatek Fvdesigner 1.1/1.1.2/1.5.76
Fatek FvDesigner Version 1.5.76 and prior is vulnerable to an out-of-bounds read while processing project files, allowing an attacker to craft a special project file that may permit arbitrary code execution.
local
low complexity
fatek CWE-125
7.8
2020-09-30 CVE-2020-16234 Unspecified vulnerability in Fatek Winproladder 3.28
In PLC WinProladder Version 3.28 and prior, a stack-based buffer overflow vulnerability can be exploited when a valid user opens a specially crafted file, which may allow an attacker to remotely execute arbitrary code.
local
low complexity
fatek
7.8
2019-03-21 CVE-2016-5800 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Fatek Automation FV Designer and Automation PM Designer V3
A malicious attacker can trigger a remote buffer overflow in the Communication Server in Fatek Automation PM Designer V3 Version 2.1.2.2, and Automation FV Designer Version 1.2.8.0.
network
low complexity
fatek CWE-119
7.5
2017-03-16 CVE-2017-6023 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Fatek products
An issue was discovered in Fatek Automation PLC Ethernet Module.
network
low complexity
fatek CWE-119
critical
9.8
2017-02-13 CVE-2016-8377 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Fatek PLC Winproladder Firmware 3.11
An issue was discovered in Fatek Automation PLC WinProladder Version 3.11 Build 14701.
network
low complexity
fatek CWE-119
8.0