You are here

WECON LeviStudioU (Update B) (ICSA-20-238-03) – Product Used in the Water and Wastewater and Energy Sectors

WECON LeviStudioU (Update B) (ICSA-20-238-03) – Product Used in the Water and Wastewater and Energy Sectors

Created: Thursday, October 29, 2020 - 13:25
Categories:
Cybersecurity

October 29, 2020

CISA has updated this advisory with additonal information on the researcher who reported the vulnerabilities. Read the advisory at CISA.

October 20, 2020

CISA has updated this advisory with additional information on the vulnerabilities and the risk evaluation, among other details. Read the advisory at CISA.

August 20, 2020

CISA has published an advisory on a stack-based buffer overflow vulnerability in WECON LeviStudioU. Versions 2019-09-21 and prior are affected. Successful exploitation of this vulnerability could allow an attacker to execute code under the privileges of the application. WECON is aware of the issue and is currently developed a solution. CISA also recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.