Known Vulnerabilities for products from Wibu
Listed below are 16 of the newest known vulnerabilities associated with the vendor "Wibu".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-41057 | In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked file without che... | 7.1 - HIGH | 2021-11-14 | 2021-11-17 |
| CVE-2021-20094 | A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can e... | 7.5 - HIGH | 2021-06-16 | 2022-05-13 |
| CVE-2021-20093 | A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can ex... | 9.1 - CRITICAL | 2021-06-16 | 2022-10-06 |
| CVE-2020-16233 | An attacker could send a specially crafted packet that could have CodeMeter (All versions prior to 7.10) send back packets co... | 7.5 - HIGH | 2020-09-16 | 2020-09-18 |
| CVE-2020-14519 | This vulnerability allows an attacker to use the internal WebSockets API for CodeMeter (All versions prior to 7.00 are affect... | 7.5 - HIGH | 2020-09-16 | 2020-09-22 |
| CVE-2020-14517 | Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Version 6.90 or ne... | 9.8 - CRITICAL | 2020-09-16 | 2021-11-04 |
| CVE-2020-14515 | CodeMeter (All versions prior to 6.90 when using CmActLicense update files with CmActLicense Firm Code) has an issue in the l... | 7.5 - HIGH | 2020-09-16 | 2020-09-22 |
| CVE-2020-14513 | CodeMeter (All versions prior to 6.81) and the software using it may crash while processing a specifically crafted license fi... | 7.5 - HIGH | 2020-09-16 | 2020-09-22 |
| CVE-2020-14509 | Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism ... | 9.8 - CRITICAL | 2020-09-16 | 2021-11-04 |
| CVE-2018-3991 | An exploitable heap overflow vulnerability exists in the WkbProgramLow function of WibuKey Network server management, version... | 9.8 - CRITICAL | 2019-02-05 | 2022-04-19 |
| CVE-2018-3990 | An exploitable pool corruption vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys... | 7.8 - HIGH | 2019-02-05 | 2022-04-19 |
| CVE-2018-3989 | An exploitable kernel memory disclosure vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS Wi... | 5.5 - MEDIUM | 2019-02-05 | 2022-04-19 |
| CVE-2017-13754 | Cross-site scripting (XSS) vulnerability in the "advanced settings - time server" module in Wibu-Systems CodeMeter before 6.5... | 5.4 - MEDIUM | 2017-09-07 | 2018-10-09 |
| CVE-2014-8419 | Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions (read and write access for all users) for codemeter.exe, whi... | 7.2 - HIGH | 2014-11-26 | 2018-10-09 |
| CVE-2011-4057 | Wibu-Systems AG CodeMeter Runtime 4.30c, 4.10b, and possibly other versions before 4.40 allows remote attackers to cause a de... | 5 - MEDIUM | 2012-01-13 | 2012-01-16 |
| CVE-2011-3689 | Cross-site scripting (XSS) vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote atta... | 4.3 - MEDIUM | 2011-09-27 | 2012-05-21 |
Known software with vulnerabilities from Wibu
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Wibu | Codemeter | - |
| Application | Wibu | Codemeter Runtime | 5.10c |
| Application | Wibu | Wibukey | 6.00 |