Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for easybuilder_pro by weintek

    CVE-2023-5777 (GCVE-0-2023-5777)

    Vulnerability from nvd – Published: 2023-11-06 19:26 – Updated: 2025-01-16 21:26
    VLAI
    Title
    Weintek EasyBuilder Pro Use of Hard-coded Credentials
    Summary
    Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-798 - Use of Hard-coded Credentials
    Assigner
    Impacted products
    Vendor Product Version
    Weintek EasyBuilder Pro Affected: 0 , < v6.07.02 (custom)
    Affected: 0 , ≤ 6.08.01.592 (custom)
    Affected: 0 , ≤ 6.08.02.470 (custom)
    Create a notification for this product.
    Date Public
    2023-11-02 17:00
    Credits
    Hank Chen (PSIRT and Threat Research of TXOne Networks) reported this vulnerability to CISA.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T08:07:32.769Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-05"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5777",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-16T21:22:21.675124Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-01-16T21:26:49.870Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "EasyBuilder Pro",
              "vendor": "Weintek",
              "versions": [
                {
                  "lessThan": "v6.07.02",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.08.01.592",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.08.02.470",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Hank Chen (PSIRT and Threat Research of TXOne Networks) reported this vulnerability to CISA."
            }
          ],
          "datePublic": "2023-11-02T17:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eWeintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.\u003c/span\u003e\n\n\u003c/span\u003e\n\n"
                }
              ],
              "value": "\n\n\nWeintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.\n\n\n\n"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798 Use of Hard-coded Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-11-06T19:26:09.044Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-05"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\n\n\u003cp\u003e\u003c/p\u003e\n\n\u003cp\u003eWeintek recommends users apply the following mitigations:\u003c/p\u003e\u003cul\u003e\u003cli\u003eUpdate EasyBuilder Pro to \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.weintek.com/globalw/Download/Download.aspx\"\u003ev6.08.01.614\u003c/a\u003e\u003c/li\u003e\u003cli\u003eUpdate EasyBuilder Pro to \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.weintek.com/globalw/Download/Download.aspx\"\u003ev6.08.02.500\u003c/a\u003e\u003c/li\u003e\u003c/ul\u003e\n\n\u003cp\u003e\u003c/p\u003e\n\n\u003cbr\u003e"
                }
              ],
              "value": "\n\n\n\n\nWeintek recommends users apply the following mitigations:\n\n  *  Update EasyBuilder Pro to  v6.08.01.614 https://www.weintek.com/globalw/Download/Download.aspx \n  *  Update EasyBuilder Pro to  v6.08.02.500 https://www.weintek.com/globalw/Download/Download.aspx \n\n\n\n\n\n\n\n\n\n"
            }
          ],
          "source": {
            "advisory": "ICSA-23-306-05",
            "discovery": "EXTERNAL"
          },
          "title": "Weintek EasyBuilder Pro Use of Hard-coded Credentials",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2023-5777",
        "datePublished": "2023-11-06T19:26:09.044Z",
        "dateReserved": "2023-10-25T22:32:36.999Z",
        "dateUpdated": "2025-01-16T21:26:49.870Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-0104 (GCVE-0-2023-0104)

    Vulnerability from nvd – Published: 2023-02-22 20:25 – Updated: 2025-01-16 21:55
    VLAI
    Summary
    The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.  
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-29 - Path Traversal: '\..\filename'
    Assigner
    Impacted products
    Vendor Product Version
    Weintek EasyBuilder Pro cMT Affected: 0 , ≤ 6.07.01 (custom)
    Affected: 0 , ≤ 6.07.02.479 (custom)
    Affected: 0 , ≤ 6.08.01.349 (custom)
    Create a notification for this product.
    Credits
    Hank Chen and Mars Cheng of PSIRT and Threat Research of TXOne Networks reported this vulnerability to CISA. Patrick Kuo of TXOne Networks also contributed to this research.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T05:02:43.504Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-0104",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-16T20:21:56.130362Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-01-16T21:55:59.469Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "EasyBuilder Pro cMT ",
              "vendor": "Weintek",
              "versions": [
                {
                  "lessThanOrEqual": "6.07.01",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.07.02.479 ",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.08.01.349 ",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Hank Chen and Mars Cheng of PSIRT and Threat Research of TXOne Networks reported this vulnerability to CISA. Patrick Kuo of TXOne Networks also contributed to this research."
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\n\n\u003cp\u003eThe listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user\u2019s computer or gain access to sensitive data. \u0026nbsp; \u003c/p\u003e\u003cbr\u003e\n\n"
                }
              ],
              "value": "\nThe listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user\u2019s computer or gain access to sensitive data. \u00a0 \n\n\n\n\n"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.3,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-29",
                  "description": "CWE-29 Path Traversal: \u0027\\..\\filename\u0027",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-22T20:25:04.680Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: var(--wht);\"\u003eWeintek recommends users to implement the following\nmitigation techniques:\u003c/span\u003e\u003cp\u003e\u00b7 \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp;\nUpgrade EasyBuilder Pro to \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://dl.weintek.com/EBPro/Installer/EBproV60702480.zip\"\u003ev6.07.02.480\u003c/a\u003e,\n\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://dl.weintek.com/EBPro/Installer/EBproV60801350.zip\"\u003ev6.08.01.350\u003c/a\u003e\nor later.\u003c/p\u003e\n\n\u003cp\u003e\u00b7 \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp;\nUse Decompile only on trusted sources and only when\nneeded.\u003c/p\u003e\n\n\n\n\n\n\u003cbr\u003e"
                }
              ],
              "value": "Weintek recommends users to implement the following\nmitigation techniques:\u00b7 \u00a0 \u00a0 \u00a0 \u00a0\nUpgrade EasyBuilder Pro to  v6.07.02.480 https://dl.weintek.com/EBPro/Installer/EBproV60702480.zip ,\n v6.08.01.350 https://dl.weintek.com/EBPro/Installer/EBproV60801350.zip \nor later.\n\n\n\n\u00b7 \u00a0 \u00a0 \u00a0 \u00a0\nUse Decompile only on trusted sources and only when\nneeded.\n\n\n\n\n\n\n\n\n"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2023-0104",
        "datePublished": "2023-02-22T20:25:04.680Z",
        "dateReserved": "2023-01-06T18:50:05.156Z",
        "dateUpdated": "2025-01-16T21:55:59.469Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5777 (GCVE-0-2023-5777)

    Vulnerability from cvelistv5 – Published: 2023-11-06 19:26 – Updated: 2025-01-16 21:26
    VLAI
    Title
    Weintek EasyBuilder Pro Use of Hard-coded Credentials
    Summary
    Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-798 - Use of Hard-coded Credentials
    Assigner
    Impacted products
    Vendor Product Version
    Weintek EasyBuilder Pro Affected: 0 , < v6.07.02 (custom)
    Affected: 0 , ≤ 6.08.01.592 (custom)
    Affected: 0 , ≤ 6.08.02.470 (custom)
    Create a notification for this product.
    Date Public
    2023-11-02 17:00
    Credits
    Hank Chen (PSIRT and Threat Research of TXOne Networks) reported this vulnerability to CISA.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T08:07:32.769Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-05"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5777",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-16T21:22:21.675124Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-01-16T21:26:49.870Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "EasyBuilder Pro",
              "vendor": "Weintek",
              "versions": [
                {
                  "lessThan": "v6.07.02",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.08.01.592",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.08.02.470",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Hank Chen (PSIRT and Threat Research of TXOne Networks) reported this vulnerability to CISA."
            }
          ],
          "datePublic": "2023-11-02T17:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eWeintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.\u003c/span\u003e\n\n\u003c/span\u003e\n\n"
                }
              ],
              "value": "\n\n\nWeintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.\n\n\n\n"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798 Use of Hard-coded Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-11-06T19:26:09.044Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-05"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\n\n\u003cp\u003e\u003c/p\u003e\n\n\u003cp\u003eWeintek recommends users apply the following mitigations:\u003c/p\u003e\u003cul\u003e\u003cli\u003eUpdate EasyBuilder Pro to \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.weintek.com/globalw/Download/Download.aspx\"\u003ev6.08.01.614\u003c/a\u003e\u003c/li\u003e\u003cli\u003eUpdate EasyBuilder Pro to \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.weintek.com/globalw/Download/Download.aspx\"\u003ev6.08.02.500\u003c/a\u003e\u003c/li\u003e\u003c/ul\u003e\n\n\u003cp\u003e\u003c/p\u003e\n\n\u003cbr\u003e"
                }
              ],
              "value": "\n\n\n\n\nWeintek recommends users apply the following mitigations:\n\n  *  Update EasyBuilder Pro to  v6.08.01.614 https://www.weintek.com/globalw/Download/Download.aspx \n  *  Update EasyBuilder Pro to  v6.08.02.500 https://www.weintek.com/globalw/Download/Download.aspx \n\n\n\n\n\n\n\n\n\n"
            }
          ],
          "source": {
            "advisory": "ICSA-23-306-05",
            "discovery": "EXTERNAL"
          },
          "title": "Weintek EasyBuilder Pro Use of Hard-coded Credentials",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2023-5777",
        "datePublished": "2023-11-06T19:26:09.044Z",
        "dateReserved": "2023-10-25T22:32:36.999Z",
        "dateUpdated": "2025-01-16T21:26:49.870Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-0104 (GCVE-0-2023-0104)

    Vulnerability from cvelistv5 – Published: 2023-02-22 20:25 – Updated: 2025-01-16 21:55
    VLAI
    Summary
    The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.  
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-29 - Path Traversal: '\..\filename'
    Assigner
    Impacted products
    Vendor Product Version
    Weintek EasyBuilder Pro cMT Affected: 0 , ≤ 6.07.01 (custom)
    Affected: 0 , ≤ 6.07.02.479 (custom)
    Affected: 0 , ≤ 6.08.01.349 (custom)
    Create a notification for this product.
    Credits
    Hank Chen and Mars Cheng of PSIRT and Threat Research of TXOne Networks reported this vulnerability to CISA. Patrick Kuo of TXOne Networks also contributed to this research.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T05:02:43.504Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-0104",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-16T20:21:56.130362Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-01-16T21:55:59.469Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "EasyBuilder Pro cMT ",
              "vendor": "Weintek",
              "versions": [
                {
                  "lessThanOrEqual": "6.07.01",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.07.02.479 ",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "6.08.01.349 ",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Hank Chen and Mars Cheng of PSIRT and Threat Research of TXOne Networks reported this vulnerability to CISA. Patrick Kuo of TXOne Networks also contributed to this research."
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\n\n\u003cp\u003eThe listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user\u2019s computer or gain access to sensitive data. \u0026nbsp; \u003c/p\u003e\u003cbr\u003e\n\n"
                }
              ],
              "value": "\nThe listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user\u2019s computer or gain access to sensitive data. \u00a0 \n\n\n\n\n"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.3,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-29",
                  "description": "CWE-29 Path Traversal: \u0027\\..\\filename\u0027",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-22T20:25:04.680Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: var(--wht);\"\u003eWeintek recommends users to implement the following\nmitigation techniques:\u003c/span\u003e\u003cp\u003e\u00b7 \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp;\nUpgrade EasyBuilder Pro to \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://dl.weintek.com/EBPro/Installer/EBproV60702480.zip\"\u003ev6.07.02.480\u003c/a\u003e,\n\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://dl.weintek.com/EBPro/Installer/EBproV60801350.zip\"\u003ev6.08.01.350\u003c/a\u003e\nor later.\u003c/p\u003e\n\n\u003cp\u003e\u00b7 \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp;\nUse Decompile only on trusted sources and only when\nneeded.\u003c/p\u003e\n\n\n\n\n\n\u003cbr\u003e"
                }
              ],
              "value": "Weintek recommends users to implement the following\nmitigation techniques:\u00b7 \u00a0 \u00a0 \u00a0 \u00a0\nUpgrade EasyBuilder Pro to  v6.07.02.480 https://dl.weintek.com/EBPro/Installer/EBproV60702480.zip ,\n v6.08.01.350 https://dl.weintek.com/EBPro/Installer/EBproV60801350.zip \nor later.\n\n\n\n\u00b7 \u00a0 \u00a0 \u00a0 \u00a0\nUse Decompile only on trusted sources and only when\nneeded.\n\n\n\n\n\n\n\n\n"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2023-0104",
        "datePublished": "2023-02-22T20:25:04.680Z",
        "dateReserved": "2023-01-06T18:50:05.156Z",
        "dateUpdated": "2025-01-16T21:55:59.469Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }