HIGH✓ PATCH🇬🇧 English

CVE-2021-20094

CVSS 7.5v3.1pub. 2021-06-16upd. 2024-11-21

A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to crash the CodeMeter Runtime Server.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Siemens Pss Cape

    APP
    Siemens
    wszystkie wersje
  • Siemens Sicam 230

    HW
    Siemens
    wszystkie wersje
  • Siemens Sicam 230 Firmware

    OS
    Siemens
    wszystkie wersje
  • Wibu Codemeter

    APP
    Wibu
    < 7.21a
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2021-20093CRITICAL9.1ten sam produkt

A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote ...

CVE-2020-14517CRITICAL9.8ten sam produkt

Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Ver...

CVE-2020-14509CRITICAL9.8ten sam produkt

Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet pa...

CVE-2021-41057HIGH7.1ten sam produkt

In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked f...

CVE-2020-14515HIGH7.5ten sam produkt

CodeMeter (All versions prior to 6.90 when using CmActLicense update files with CmActLicense Firm Code) has an...