Vulnerability Details CVE-2021-23157
WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- https://www.cisa.gov/uscert/ics/advisories/icsa-21-355-03
- https://www.zerodayinitiative.com/advisories/ZDI-22-130/
- https://www.zerodayinitiative.com/advisories/ZDI-22-132/
- https://www.cisa.gov/uscert/ics/advisories/icsa-21-355-03
- https://www.zerodayinitiative.com/advisories/ZDI-22-130/
- https://www.zerodayinitiative.com/advisories/ZDI-22-132/
Products affected by CVE-2021-23157
-
cpe:2.3:a:we-con:levistudiou:-
-
cpe:2.3:a:we-con:levistudiou:1.8.29
-
cpe:2.3:a:we-con:levistudiou:1.8.44
-
cpe:2.3:a:we-con:levistudiou:1.8.56
-
cpe:2.3:a:we-con:levistudiou:1.8.69
-
cpe:2.3:a:we-con:levistudiou:2019-09-21