CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47136
https://notcve.org/view.php?id=CVE-2024-47136
03 Oct 2024 — Out-of-bounds read vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a denial-of-service (DoS) condition, arbitrary code execution, and/or information disclosure because the issues exist in parsing of KPP project files. Existe una vulnerabilidad de lectura fuera de los límites en el sof... • https://jvn.jp/en/vu/JVNVU92808077 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47135
https://notcve.org/view.php?id=CVE-2024-47135
03 Oct 2024 — Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a denial-of-service (DoS) condition, arbitrary code execution, and/or information disclosure because the issues exist in parsing of KPP project files. Existe una vulnerabilidad de desbordamiento de búfer basad... • https://jvn.jp/en/vu/JVNVU92808077 • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47134
https://notcve.org/view.php?id=CVE-2024-47134
03 Oct 2024 — Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a denial-of-service (DoS) condition, arbitrary code execution, and/or information disclosure because the issues exist in parsing of KPP project files. Existe una vulnerabilidad de escritura fuera de los límites en el ... • https://jvn.jp/en/vu/JVNVU92808077 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2023-49713
https://notcve.org/view.php?id=CVE-2023-49713
12 Dec 2023 — Denial-of-service (DoS) vulnerability exists in NetBIOS service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur. Existe una vulnerabilidad de Denegación de Servicio (DoS) en el servicio NetBIOS de la serie HMI GC-A2. Si un atacante remoto no autenticado envía paquetes especialmente manipulados a puertos específicos, puede producirse una condición de Denegación de Servicio (DoS). • https://jvn.jp/en/jp/JVN34145838 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2023-49143
https://notcve.org/view.php?id=CVE-2023-49143
12 Dec 2023 — Denial-of-service (DoS) vulnerability exists in rfe service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur. Existe una vulnerabilidad de Denegación de Servicio (DoS) en el servicio rfe de la serie HMI GC-A2. Si un atacante remoto no autenticado envía paquetes especialmente manipulados a puertos específicos, puede producirse una condición de Denegación de Servicio (DoS). • https://jvn.jp/en/jp/JVN34145838 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2023-49140
https://notcve.org/view.php?id=CVE-2023-49140
12 Dec 2023 — Denial-of-service (DoS) vulnerability exists in commplex-link service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur. Existe una vulnerabilidad de Denegación de Servicio (DoS) en el servicio de enlace complejo de la serie HMI GC-A2. Si un atacante remoto no autenticado envía paquetes especialmente manipulados a puertos específicos, puede producirse una condición de Denegación de Servicio (DoS). • https://jvn.jp/en/jp/JVN34145838 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2023-41963
https://notcve.org/view.php?id=CVE-2023-41963
12 Dec 2023 — Denial-of-service (DoS) vulnerability exists in FTP service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur. Existe una vulnerabilidad de Denegación de Servicio (DoS) en el servicio FTP de la serie HMI GC-A2. Si un atacante remoto no autenticado envía paquetes especialmente manipulados a puertos específicos, puede producirse una condición de Denegación de Servicio (DoS). • https://jvn.jp/en/jp/JVN34145838 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-42507
https://notcve.org/view.php?id=CVE-2023-42507
17 Oct 2023 — Stack-based buffer overflow vulnerability exists in OnSinView2 versions 2.0.1 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user open a specially crafted OnSinView2 project file. La vulnerabilidad de desbordamiento del búfer existe en las versiones 2.0.1 y anteriores de OnSinView2. Si se explota esta vulnerabilidad, se puede revelar información o se puede ejecutar código arbitrario haciendo que un usuario abra un archivo de proyec... • https://jvn.jp/en/vu/JVNVU98392064 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-42506
https://notcve.org/view.php?id=CVE-2023-42506
17 Oct 2023 — Improper restriction of operations within the bounds of a memory buffer issue exists in OnSinView2 versions 2.0.1 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user open a specially crafted OnSinView2 project file. Existe una restricción inadecuada de operaciones dentro de los límites de un problema de búfer de memoria en las versiones 2.0.1 y anteriores de OnSinView2. Si se explota esta vulnerabilidad, se puede revelar informació... • https://jvn.jp/en/vu/JVNVU98392064 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-41374
https://notcve.org/view.php?id=CVE-2023-41374
20 Sep 2023 — Double free issue exists in Kostac PLC Programming Software Version 1.6.11.0 and earlier. Arbitrary code may be executed by having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier because the issue exists in parsing of KPP project files. The vendor states that Kostac PLC Programming Software Version 1.6.10.0 or later implements the function which prevents a project file alteration. Therefore, to mitigate the impact of these vulner... • https://jvn.jp/en/vu/JVNVU95282683/index.html • CWE-415: Double Free •