We-Con Levistudiou vulnerabilities
14 known vulnerabilities affecting we-con/levistudiou.
Total CVEs
14
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH13MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-23138P3HIGHCVSS 7.8≤ 2019-09-212022-01-14
CVE-2021-23138 [HIGH] CWE-121 CVE-2021-23138: WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, whi
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code.
nvd
CVE-2020-16243P3HIGHCVSS 7.8≤ 2019-09-21vVersion 2019-09-21 and prior2021-02-23
CVE-2020-16243 [HIGH] CWE-121 CVE-2020-16243: Multiple buffer overflow vulnerabilities exist when LeviStudioU (Version 2019-09-21 and prior) proce
Multiple buffer overflow vulnerabilities exist when LeviStudioU (Version 2019-09-21 and prior) processes project files. Opening a specially crafted project file could allow an attacker to exploit and execute code under the privileges of the application.
nvd
CVE-2018-10602P3HIGHCVSS 8.8v1.8.29v1.8.442018-09-26
CVE-2018-10602 [HIGH] CWE-121 CVE-2018-10602: WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilitie
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.
nvd
CVE-2021-23157P3HIGHCVSS 7.8≤ 2019-09-212022-01-14
CVE-2021-23157 [HIGH] CWE-122 CVE-2021-23157: WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, whic
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code.
nvd
CVE-2021-43983P3HIGHCVSS 7.8≤ 2019-09-212021-12-13
CVE-2021-43983 [HIGH] CWE-121 CVE-2021-43983: WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to multiple stack-based buffer overfl
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to multiple stack-based buffer overflow instances while parsing project files, which may allow an attacker to execute arbitrary code.
nvd
CVE-2019-6537P3HIGHCVSS 7.8≤ 1.8.562019-02-13
CVE-2019-6537 [HIGH] CWE-121 CVE-2019-6537: Multiple stack-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior m
Multiple stack-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior may be exploited when parsing strings within project files. The process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage these vulnerabilities to execute code und
nvd
CVE-2018-10606P3HIGHCVSS 8.8v1.8.29v1.8.442018-09-26
CVE-2018-10606 [HIGH] CWE-122 CVE-2018-10606: WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.
nvd
CVE-2018-10614P3HIGHCVSS 8.8v1.8.29v1.8.442018-10-09
CVE-2018-10614 [HIGH] CWE-611 CVE-2018-10614: An XXE vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the applicatio
An XXE vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project XML files.
nvd
CVE-2019-6539P3HIGHCVSS 7.8≤ 1.8.562019-02-13
CVE-2019-6539 [HIGH] CWE-122 CVE-2019-6539: Several heap-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior hav
Several heap-based buffer overflow vulnerabilities in WECON LeviStudioU version 1.8.56 and prior have been identified, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these vulnerabilities to NCCIC.
nvd
CVE-2018-10610P3HIGHCVSS 8.8v1.8.29v1.8.442018-10-09
CVE-2018-10610 [HIGH] CWE-787 CVE-2018-10610: An out-of-bounds vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the
An out-of-bounds vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project files.
nvd
CVE-2019-6541P3HIGHCVSS 7.8≤ 1.8.562019-02-13
CVE-2019-6541 [HIGH] CWE-119 CVE-2019-6541: A memory corruption vulnerability has been identified in WECON LeviStudioU version 1.8.56 and prior,
A memory corruption vulnerability has been identified in WECON LeviStudioU version 1.8.56 and prior, which may allow arbitrary code execution. Mat Powell, Ziad Badawi, and Natnael Samson working with Trend Micro's Zero Day Initiative, reported these vulnerabilities to NCCIC.
nvd
CVE-2020-25199P3HIGHCVSS 7.8≤ 2019-09-212020-12-09
CVE-2020-25199 [HIGH] CWE-122 CVE-2020-25199: A heap-based buffer overflow vulnerability exists within the WECON LeviStudioU Release Build 2019-09
A heap-based buffer overflow vulnerability exists within the WECON LeviStudioU Release Build 2019-09-21 and prior when processing project files. Opening a specially crafted project file could allow an attacker to exploit and execute code under the privileges of the application.
nvd
CVE-2020-25186P3HIGHCVSS 7.5≤ 2019-09-212020-10-22
CVE-2020-25186 [HIGH] CWE-611 CVE-2020-25186: An XXE vulnerability exists within LeviStudioU Release Build 2019-09-21 and prior when processing pa
An XXE vulnerability exists within LeviStudioU Release Build 2019-09-21 and prior when processing parameter entities, which may allow file disclosure.
nvd
CVE-2018-7527P4MEDIUMCVSS 5.3≤ 1.8.292018-04-26
CVE-2018-7527 [MEDIUM] CWE-121 CVE-2018-7527: A buffer overflow can be triggered in LeviStudio HMI Editor, Version 1.10 part of Wecon LeviStudioU
A buffer overflow can be triggered in LeviStudio HMI Editor, Version 1.10 part of Wecon LeviStudioU 1.8.29, and PI Studio HMI Project Programmer, Build: November 11, 2017 and prior by opening a specially crafted file.
nvd