Vulnerabilities > WE CON

DATE CVE VULNERABILITY TITLE RISK
2021-02-23 CVE-2020-16243 Out-of-bounds Write vulnerability in We-Con Levistudiou
Multiple buffer overflow vulnerabilities exist when LeviStudioU (Version 2019-09-21 and prior) processes project files.
network
we-con CWE-787
6.8
2020-12-09 CVE-2020-25199 Out-of-bounds Write vulnerability in We-Con Levistudiou
A heap-based buffer overflow vulnerability exists within the WECON LeviStudioU Release Build 2019-09-21 and prior when processing project files.
network
we-con CWE-787
6.8
2020-12-01 CVE-2020-25181 Out-of-bounds Read vulnerability in We-Con PLC Editor 1.3.5
WECON PLC Editor Versions 1.3.8 and prior has a heap-based buffer overflow vulnerabilities have been identified that may allow arbitrary code execution.
network
we-con CWE-125
6.8
2020-12-01 CVE-2020-25177 Out-of-bounds Write vulnerability in We-Con PLC Editor 1.3.5
WECON PLC Editor Versions 1.3.8 and prior has a stack-based buffer overflow vulnerability has been identified that may allow arbitrary code execution.
network
we-con CWE-787
6.8
2020-10-22 CVE-2020-25186 XML Entity Expansion vulnerability in We-Con Levistudiou
An XXE vulnerability exists within LeviStudioU Release Build 2019-09-21 and prior when processing parameter entities, which may allow file disclosure.
network
low complexity
we-con CWE-776
5.0
2019-12-23 CVE-2019-18236 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in We-Con PLC Editor 1.3.5
Multiple buffer overflow vulnerabilities exist when the PLC Editor Version 1.3.5_20190129 processes project files.
network
we-con CWE-119
6.8
2019-03-27 CVE-2018-14814 Out-of-bounds Read vulnerability in We-Con PI Studio and PI Studio HMI
WECON Technology PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior lacks proper validation of user-supplied data, which may result in a read past the end of an allocated object.
network
we-con CWE-125
4.3
2019-02-13 CVE-2019-6541 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in We-Con Levistudiou 1.8.29/1.8.44
A memory corruption vulnerability has been identified in WECON LeviStudioU version 1.8.56 and prior, which may allow arbitrary code execution.
network
we-con CWE-119
6.8
2019-02-13 CVE-2019-6539 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in We-Con Levistudiou 1.8.29/1.8.44
Several heap-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior have been identified, which may allow arbitrary code execution.
network
we-con CWE-119
critical
9.3
2019-02-13 CVE-2019-6537 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in We-Con Levistudiou 1.8.29/1.8.44
Multiple stack-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior may be exploited when parsing strings within project files.
network
we-con CWE-119
6.8