Hank Chen

**Nome do software vulnerável e versões afetadas** RoboDK versão 5.5.4 **Descrição** O problema está relacionado a um estouro de buffer baseado em heap que ocorre durante o processamento de um arquivo de projeto específico, levando a uma possível corrupção de memória e falhas no aplicativo. **Recomendações** Para a versão 5.5.4 do RoboDK, atualize para uma versão mais recente que contenha uma correção para este problema. No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Weintek EasyBuilder Pro (affected versions not specified) **Description** The issue concerns the exposure of a private key, which could allow for remote control of the crash report server. This occurs even when the private key is deleted immediately after crash report transmission is finished. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek cMT3000 HMI Web CGI (affected versions not specified) **Description** The issue is related to a stack-based buffer overflow in the cgi-bin command wb.cgi of Weintek's cMT3000 HMI Web CGI device. This could allow an anonymous attacker to hijack control flow and bypass login authentication, potentially enabling the execution of arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek cMT3000 HMI Web CGI (affected versions not specified) **Description** The issue is related to a stack-based buffer overflow in the cgi-bin codesys.cgi of Weintek's cMT3000 HMI Web CGI device. This could allow an anonymous attacker to hijack control flow and bypass login authentication. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek cMT3000 HMI Web CGI (affected versions not specified) **Description** The issue exists due to the lack of measures to neutralize special elements used in the operating system command. An anonymous attacker can execute arbitrary commands after logging into the device. This allows a remote attacker to execute arbitrary commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek Weincloud version 0.13.6 **Description** The issue allows an attacker to abuse the registration functionality to login with testing credentials to the official website. **Recommendations** For Weintek Weincloud version 0.13.6, consider restricting access to the registration functionality until a patch is available. As a temporary workaround, avoid using testing credentials for login purposes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek Weincloud version 0.13.6 **Description** The issue allows an attacker to reset a password using the corresponding account's JWT token only. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For Weintek Weincloud version 0.13.6, consider restricting access to password reset functionality until a patch is available. As a temporary workaround, avoid using the JWT token for password reset operations. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek Weincloud version 0.13.6 **Description** The issue is related to insufficient restriction of authentication attempts, allowing a remote attacker to perform a brute force attack on credentials. The error message responses provide authentication hints, facilitating the development of such an attack. **Recommendations** For Weintek Weincloud version 0.13.6, consider temporarily restricting access to the authentication mechanism to minimize the risk of exploitation. As a workaround, limit the number of authentication attempts from a single IP address within a certain time frame until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek Weincloud version 0.13.6 **Description** The issue is related to the incorrect handling of construction elements in the Weincloud cloud platform for managing industrial devices. An attacker could exploit this by sending a forged JWT token, potentially causing a denial-of-service condition for Weincloud. This could be achieved by remotely sending the forged token. **Recommendations** For Weintek Weincloud version 0.13.6, consider disabling the handling of JWT tokens as a temporary workaround until a patch is available. Restrict access to the Weincloud platform to minimize the risk of exploitation. Avoid using the `JWT token` in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Weintek EasyBuilder Pro (affected versions not specified) **Description** The issue is caused by a ZipSlip attack resulting from decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.