CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-26401
https://notcve.org/view.php?id=CVE-2025-26401
04 Apr 2025 — Weak encoding for password vulnerability exists in HMI ViewJet C-more series. If this vulnerability is exploited, authentication information may be obtained by a local authenticated attacker. Existe una vulnerabilidad de codificación débil para contraseñas en la serie HMI ViewJet C-more. Si se explota esta vulnerabilidad, un atacante local autenticado podría obtener información de autenticación. • https://jvn.jp/en/jp/JVN17260367 • CWE-261: Weak Encoding for Password •
CVSS: 5.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-25061
https://notcve.org/view.php?id=CVE-2025-25061
04 Apr 2025 — Unintended proxy or intermediary ('Confused Deputy') issue exists in HMI ViewJet C-more series and HMI GC-A2 series, which may allow a remote unauthenticated attacker to use the product as an intermediary for FTP bounce attack. Existe un problema de proxy o intermediario no deseado ('Confused Deputy') en las series HMI ViewJet C-more y HMI GC-A2, que puede permitir que un atacante remoto no autenticado use el producto como intermediario para un ataque de rebote de FTP. • https://jvn.jp/en/jp/JVN17260367 • CWE-441: Unintended Proxy or Intermediary ('Confused Deputy') •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24317
https://notcve.org/view.php?id=CVE-2025-24317
04 Apr 2025 — Allocation of resources without limits or throttling issue exists in HMI ViewJet C-more series and HMI GC-A2 series, which may allow a remote unauthenticated attacker to cause a denial-of-service (DoS) condition. Existen problemas de asignación de recursos sin límites o limitación en las series HMI ViewJet C-more y HMI GC-A2, lo que puede permitir que un atacante remoto no autenticado provoque una condición de denegación de servicio (DoS). • https://jvn.jp/en/jp/JVN17260367 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24310
https://notcve.org/view.php?id=CVE-2025-24310
04 Apr 2025 — Improper restriction of rendered UI layers or frames issue exists in HMI ViewJet C-more series, which may allow a remote unauthenticated attacker to trick the product user to perform operations on the product's web pages. Existe un problema de restricción incorrecta de capas o marcos de UI renderizados en la serie HMI ViewJet C-more, que puede permitir que un atacante remoto no autenticado engañe al usuario del producto para que realice operaciones en las páginas web del producto. • https://jvn.jp/en/jp/JVN17260367 • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47136
https://notcve.org/view.php?id=CVE-2024-47136
03 Oct 2024 — Out-of-bounds read vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a denial-of-service (DoS) condition, arbitrary code execution, and/or information disclosure because the issues exist in parsing of KPP project files. Existe una vulnerabilidad de lectura fuera de los límites en el sof... • https://jvn.jp/en/vu/JVNVU92808077 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47135
https://notcve.org/view.php?id=CVE-2024-47135
03 Oct 2024 — Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a denial-of-service (DoS) condition, arbitrary code execution, and/or information disclosure because the issues exist in parsing of KPP project files. Existe una vulnerabilidad de desbordamiento de búfer basad... • https://jvn.jp/en/vu/JVNVU92808077 • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47134
https://notcve.org/view.php?id=CVE-2024-47134
03 Oct 2024 — Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a denial-of-service (DoS) condition, arbitrary code execution, and/or information disclosure because the issues exist in parsing of KPP project files. Existe una vulnerabilidad de escritura fuera de los límites en el ... • https://jvn.jp/en/vu/JVNVU92808077 • CWE-787: Out-of-bounds Write •