CVE-2021-42707

Summary

PLC Editor Versions 1.3.8 and prior is vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
WECONPLC EditorAll <= 1.3.8affected

Weaknesses

  • CWE-787: OUT-OF-BOUNDS WRITE CWE-787

Workarounds

WECON has not responded to requests to work with CISA to mitigate these vulnerabilities. Users of these affected products are invited to contact WECON technical support for additional information.

ADP Enrichment

CVE Program Container

Additional References

References