CVE-2018-14810

Summary

WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior parse files and pass invalidated user data to an unsafe method call, which may allow code to be executed in the context of an administrator.

Affected Software

VendorProductVersion RangeStatus
WECONPI Studio HMI4.1.9 and prioraffected
WECONPI Studio4.2.34 and prioraffected

Weaknesses

  • CWE-787: OUT-OF-BOUNDS WRITE CWE-787

ADP Enrichment

CVE Program Container

Additional References

References