Vulnerabilities > Weintek > Easybuilder PRO

DATE CVE VULNERABILITY TITLE RISK
2023-11-06 CVE-2023-5777 Use of Hard-coded Credentials vulnerability in Weintek Easybuilder PRO
Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.
network
low complexity
weintek CWE-798
critical
9.8
2023-02-22 CVE-2023-0104 Path Traversal vulnerability in Weintek Easybuilder PRO
The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file.
local
low complexity
weintek CWE-22
7.8