CVE-2023-0104

Description

The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.

Remediation

Solution:

Weintek recommends users to implement the following mitigation techniques:· Upgrade EasyBuilder Pro to v6.07.02.480 https://dl.weintek.com/EBPro/Installer/EBproV60702480.zip , v6.08.01.350 https://dl.weintek.com/EBPro/Installer/EBproV60801350.zip or later. · Use Decompile only on trusted sources and only when needed.

References

Link	Tags
https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01	third party advisory us government resource

Frequently Asked Questions

What is the severity of CVE-2023-0104?: CVE-2023-0104 has been scored as a critical severity vulnerability.
How to fix CVE-2023-0104?: To fix CVE-2023-0104: Weintek recommends users to implement the following mitigation techniques:· Upgrade EasyBuilder Pro to v6.07.02.480 https://dl.weintek.com/EBPro/Installer/EBproV60702480.zip , v6.08.01.350 https://dl.weintek.com/EBPro/Installer/EBproV60801350.zip or later. · Use Decompile only on trusted sources and only when needed.
Is CVE-2023-0104 being actively exploited in the wild?: It is possible that CVE-2023-0104 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~3% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-0104?: CVE-2023-0104 affects Weintek EasyBuilder Pro cMT .

Description

Remediation

Categories

CWE-29 – Path Traversal: '\..\filename'

CWE-22 – Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

References

Frequently Asked Questions