Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wibu codemeter vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-14509
Multiple memory corruption vulnerabilities exist in CodeMeter (All versions before 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted packets to exploit these vulnerabilities.
Wibu Codemeter
7.5
CVSSv2
CVE-2020-14517
Protocol encryption can be easily broken for CodeMeter (All versions before 6.90 are affected, including Version 6.90 or newer only if CodeMeter Runtime is running as server) and the server accepts external connections, which may allow an malicious user to remotely communicate wi...
Wibu Codemeter
7.2
CVSSv2
CVE-2014-8419
Wibu-Systems CodeMeter Runtime prior to 5.20 uses weak permissions (read and write access for all users) for codemeter.exe, which allows local users to gain privileges via a Trojan horse file.
Wibu Codemeter Runtime
6.4
CVSSv2
CVE-2021-20093
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to disclose heap memory contents or crash the CodeMeter Runtime Server.
Wibu Codemeter
Siemens Pss Cape -
Siemens Sicam 230 Firmware
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 3.0
Siemens Simatic Information Server 2019
Siemens Sinec Infrastructure Network Services
Siemens Simatic Pcs Neo
Siemens Simit Simulation Platform
Siemens Simit Simulation Platform 10.3
Siemens Simatic Wincc Oa 3.18
Siemens Sinec Infrastructure Network Services 1.0.1
Siemens Simatic Wincc Oa 3.17
Siemens Simatic Process Historian
Siemens Simatic Process Historian 2020
Siemens Simatic Information Server 2020
5
CVSSv2
CVE-2021-20094
A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to crash the CodeMeter Runtime Server.
Wibu Codemeter
Siemens Pss Cape -
Siemens Sicam 230 Firmware -
5
CVSSv2
CVE-2020-16233
An attacker could send a specially crafted packet that could have CodeMeter (All versions before 7.10) send back packets containing data from the heap.
Wibu Codemeter
5
CVSSv2
CVE-2020-14513
CodeMeter (All versions before 6.81) and the software using it may crash while processing a specifically crafted license file due to unverified length fields.
Wibu Codemeter
5
CVSSv2
CVE-2020-14515
CodeMeter (All versions before 6.90 when using CmActLicense update files with CmActLicense Firm Code) has an issue in the license-file signature checking mechanism, which allows malicious users to build arbitrary license files, including forging a valid license file as if it were...
Wibu Codemeter
5
CVSSv2
CVE-2020-14519
This vulnerability allows an malicious user to use the internal WebSockets API for CodeMeter (All versions before 7.00 are affected, including Version 7.0 or newer with the affected WebSockets API still enabled. This is especially relevant for systems or devices where a web brows...
Wibu Codemeter
5
CVSSv2
CVE-2011-4057
Wibu-Systems AG CodeMeter Runtime 4.30c, 4.10b, and possibly other versions prior to 4.40 allows remote malicious users to cause a denial of service (CodeMeter.exe crash) via certain crafted packets to TCP port 22350.
Wibu Codemeter Runtime 4.10b
Wibu Codemeter Runtime
Wibu Codemeter Runtime 4.20a
Wibu Codemeter Runtime 4.30c
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »