ByteOS Network

Studio

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2019-25276

Assigner-VulnCheck

View Details

Assigner-VulnCheck

CVSS Score-8.5||HIGH

EPSS-0.19% / 8.71%

7 Day CHG~0.00%

Published-04 Feb, 2026 | 23:15

Updated-05 Feb, 2026 | 17:24

Studio 5000 Logix Designer 30.01.00 - 'FactoryTalk Activation Service' Unquoted Service Path

Studio 5000 Logix Designer 30.01.00 contains an unquoted service path vulnerability in the FactoryTalk Activation Service that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\ to inject malicious code that would execute with LocalSystem permissions.

Vendor-Rockwell Automation, Inc.

Product-Studio

CWE ID-CWE-428

Unquoted Search Path or Element

CVE-2025-34123

Assigner-VulnCheck

View Details

Assigner-VulnCheck

CVSS Score-8.4||HIGH

EPSS-0.46% / 36.52%

7 Day CHG~0.00%

Published-16 Jul, 2025 | 21:07

Updated-07 Apr, 2026 | 14:09

VideoCharge Studio 2.12.3.685 SEH Buffer Overflow via .VSC File

A stack-based buffer overflow vulnerability exists in VideoCharge Studio 2.12.3.685 when processing a specially crafted .VSC configuration file. The issue occurs due to improper handling of user-supplied data in the XML 'Name' attribute, leading to an SEH overwrite condition. An attacker can exploit this vulnerability by convincing a user to open a malicious .VSC file, resulting in arbitrary code execution under the context of the user.

Vendor-VideoCharge Software

Product-Studio

CWE ID-CWE-121

Stack-based Buffer Overflow

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-94

Improper Control of Generation of Code ('Code Injection')