Weintek: >> Easybuilder Pro Security Vulnerabilities
Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-11-06
The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.
CVSS Score
9.3
EPSS Score
0.032
Published
2023-02-22