CodeMeter (All versions prior to 6.90 when using CmActLicense update files with CmActLicense Firm Code) has an issue in the license-file signature checking mechanism, which allows attackers to build arbitrary license files, including forging a valid license file as if it were a valid license file of an existing vendor. Only CmActLicense update files with CmActLicense Firm Code are affected.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NWibu Codemeter
APPWibu< 6.90
Powiązane podatności
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote ...
Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet pa...
Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Ver...
A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote...
This vulnerability allows an attacker to use the internal WebSockets API for CodeMeter (All versions prior to ...