Fatek

Winproladder

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-43554

  • EPSS 0.32%
  • Veröffentlicht 28.12.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:29:25

FATEK WinProladder Versions 3.30_24518 and prior are vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code.

7.8

CVE-2021-43556

  • EPSS 0.61%
  • Veröffentlicht 28.12.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:29:25

FATEK WinProladder Versions 3.30_24518 and prior are vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code.

7.8

CVE-2021-38426

  • EPSS 0.3%
  • Veröffentlicht 18.10.2021 13:15:09
  • Zuletzt bearbeitet 21.11.2024 06:17:04

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code.

7.8

CVE-2021-38430

  • EPSS 0.37%
  • Veröffentlicht 18.10.2021 13:15:09
  • Zuletzt bearbeitet 21.11.2024 06:17:04

FATEK Automation WinProladder versions 3.30 and prior proper validation of user-supplied data when parsing project files, which could result in a stack-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code.

7.8

CVE-2021-38434

  • EPSS 0.3%
  • Veröffentlicht 18.10.2021 13:15:09
  • Zuletzt bearbeitet 21.11.2024 06:17:05

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an unexpected sign extension. An attacker could leverage this vulnerability to execute arbitrary cod...

7.8

CVE-2021-38436

  • EPSS 0.56%
  • Veröffentlicht 18.10.2021 13:15:09
  • Zuletzt bearbeitet 21.11.2024 06:17:05

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in a memory-corruption condition. An attacker could leverage this vulnerability to execute arbitrary co...

7.8

CVE-2021-38438

  • EPSS 0.22%
  • Veröffentlicht 18.10.2021 13:15:09
  • Zuletzt bearbeitet 21.11.2024 06:17:06

A use after free vulnerability in FATEK Automation WinProladder versions 3.30 and prior may be exploited when a valid user opens a malformed project file, which may allow arbitrary code execution.

4.3

CVE-2021-38440

  • EPSS 0.15%
  • Veröffentlicht 18.10.2021 13:15:09
  • Zuletzt bearbeitet 21.11.2024 06:17:06

FATEK Automation WinProladder versions 3.30 and prior is vulnerable to an out-of-bounds read, which may allow an attacker to read unauthorized information.

7.8

CVE-2021-38442

  • EPSS 0.56%
  • Veröffentlicht 18.10.2021 13:15:09
  • Zuletzt bearbeitet 21.11.2024 06:17:06

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in a heap-corruption condition. An attacker could leverage this vulnerability to execute code in the co...

9.8

CVE-2021-32988

  • EPSS 0.75%
  • Veröffentlicht 29.06.2021 15:15:20
  • Zuletzt bearbeitet 21.11.2024 06:08:04

FATEK Automation WinProladder Versions 3.30 and prior are vulnerable to an out-of-bounds write, which may allow an attacker to execute arbitrary code.