The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 03:59
Type | Values Removed | Values Added |
---|---|---|
Summary | The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data. |
Information
Published : 2023-02-22 21:15
Updated : 2024-02-28 19:51
NVD link : CVE-2023-0104
Mitre link : CVE-2023-0104
CVE.ORG link : CVE-2023-0104
JSON object : View
Products Affected
weintek
- easybuilder_pro