Vulnerabilities > WE CON

DATE CVE VULNERABILITY TITLE RISK
2019-12-23 CVE-2019-18236 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in We-Con PLC Editor 1.3.5
Multiple buffer overflow vulnerabilities exist when the PLC Editor Version 1.3.5_20190129 processes project files.
local
low complexity
we-con CWE-119
7.8
7.8
2019-03-27 CVE-2018-14814 Out-of-bounds Read vulnerability in We-Con PI Studio and PI Studio HMI
WECON Technology PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior lacks proper validation of user-supplied data, which may result in a read past the end of an allocated object.
network
low complexity
we-con CWE-125
6.5
6.5
2019-02-13 CVE-2019-6541 Out-of-bounds Write vulnerability in We-Con Levistudiou 1.8.29/1.8.44/1.8.56
A memory corruption vulnerability has been identified in WECON LeviStudioU version 1.8.56 and prior, which may allow arbitrary code execution.
local
low complexity
we-con CWE-787
7.8
7.8
2019-02-13 CVE-2019-6539 Out-of-bounds Write vulnerability in We-Con Levistudiou 1.8.29/1.8.44/1.8.56
Several heap-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior have been identified, which may allow arbitrary code execution.
local
low complexity
we-con CWE-787
7.8
7.8
2019-02-13 CVE-2019-6537 Out-of-bounds Write vulnerability in We-Con Levistudiou 1.8.29/1.8.44/1.8.56
Multiple stack-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior may be exploited when parsing strings within project files.
local
low complexity
we-con CWE-787
7.8
7.8
2018-10-09 CVE-2018-10614 XXE vulnerability in We-Con Levistudiou 1.8.29/1.8.44
An XXE vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project XML files.
network
low complexity
we-con CWE-611
8.8
8.8
2018-10-09 CVE-2018-10610 Out-of-bounds Write vulnerability in We-Con Levistudiou 1.8.29/1.8.44
An out-of-bounds vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project files.
network
low complexity
we-con CWE-787
8.8
8.8
2018-10-08 CVE-2018-17889 XXE vulnerability in We-Con PI Studio and PI Studio HMI
In WECON Technology Co., Ltd.
network
high complexity
we-con CWE-611
5.3
5.3
2018-10-08 CVE-2018-14818 Out-of-bounds Write vulnerability in We-Con PI Studio and PI Studio HMI
WECON Technology Co., Ltd.
network
low complexity
we-con CWE-787
critical
 9.8
9.8
2018-10-08 CVE-2018-14810 Out-of-bounds Write vulnerability in We-Con PI Studio and PI Studio HMI
WECON Technology Co., Ltd.
network
low complexity
we-con CWE-787
8.8
8.8