CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-0104

The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.032

EPSS Ranking 86.5%

CVSS Severity

CVSS v3 Score 9.3

References

https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01
https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01

Products affected by CVE-2023-0104

Weintek » Easybuilder Pro » Version: 6.07.02

cpe:2.3:a:weintek:easybuilder_pro:6.07.02
Weintek » Easybuilder Pro » Version: 6.07.02.246

cpe:2.3:a:weintek:easybuilder_pro:6.07.02.246
Weintek » Easybuilder Pro » Version: 6.07.02.320

cpe:2.3:a:weintek:easybuilder_pro:6.07.02.320
Weintek » Easybuilder Pro » Version: 6.08.01.190

cpe:2.3:a:weintek:easybuilder_pro:6.08.01.190
Weintek » Easybuilder Pro » Version: 6.08.01.296

cpe:2.3:a:weintek:easybuilder_pro:6.08.01.296

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0104

Products

Pricing

Contact Us