Описание
A Stack-based Buffer Overflow issue was discovered in WECON LEVI Studio HMI Editor v1.8.1 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified in which the application does not verify string size before copying to memory; the attacker may then be able to crash the application or run arbitrary code.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.8.1 (включая)
cpe:2.3:a:we-con:levi_studio_hmi_editor:*:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01173
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-121
CWE-119
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
A Stack-based Buffer Overflow issue was discovered in WECON LEVI Studio HMI Editor v1.8.1 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified in which the application does not verify string size before copying to memory; the attacker may then be able to crash the application or run arbitrary code.
EPSS
Процентиль: 78%
0.01173
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-121
CWE-119