CVE-2021-20094

Summary

CVE	CVE-2021-20094
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-06-16 12:15:00 UTC
Updated	2022-05-13 17:30:00 UTC
Description	A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to crash the CodeMeter Runtime Server.

Risk And Classification

Problem Types: CWE-125

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Siemens	Pss Cape	-	All	All	All
Hardware	Siemens	Sicam 230	-	All	All	All
Operating System	Siemens	Sicam 230 Firmware	-	All	All	All
Application	Wibu	Codemeter	All	All	All	All

References

Reference	Source	Link	Tags
Wibu-Systems CodeMeter Runtime \| CISA	MISC	us-cert.cisa.gov
cdn.wibu.com/fileadmin/wibu_downloads/security_advisories/Advisory_WIBU-21...	MISC	cdn.wibu.com
cert-portal.siemens.com/productcert/pdf/ssa-675303.pdf	CONFIRM	cert-portal.siemens.com
Multiple Vulnerabilities in Wibu-Systems CodeMeter - Research Advisory \| Tenable®	MISC	www.tenable.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

375649 Wibu-Systems CodeMeter Runtime Denial Of Service Vulnerability
590524 Wibu-Systems CodeMeter Runtime Multiple Vulnerabilities (ICSA-21-210-02)
590731 Wibu-Systems CodeMeter Multiple Vulnerabilities (CD_SVA_2021_1)