First published: Wed Sep 16 2020(Updated: )
CodeMeter (All versions prior to 6.81) and the software using it may crash while processing a specifically crafted license file due to unverified length fields.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Wibu Codemeter | <6.81 | |
Wibu-Systems AG All versions prior to 7.10a are affected by CVE-2020-14509 and CVE-2020-14519 | ||
Wibu-Systems AG All versions prior to 7.10a are affected by CVE-2020-14517 | ||
Wibu-Systems AG All versions prior to 7.10 are affected by CVE-2020-16233 | ||
Wibu-Systems AG All versions prior to 6.81 are affected by CVE-2020-14513 | ||
Wibu-Systems AG All versions prior to 6.90 are affected by CVE-2020-14515 when using CmActLicense update files with CmActLicense Firm Code |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-14513 is a vulnerability in CodeMeter and the software using it, where it may crash while processing a specifically crafted license file due to unverified length fields.
CVE-2020-14513 has a severity rating of high, with a CVSS score of 7.5.
All versions of CodeMeter prior to 6.81 are affected by CVE-2020-14513.
CVE-2020-14513 can be exploited by processing a specifically crafted license file containing unverified length fields.
Yes, updating CodeMeter to version 6.81 or later will fix CVE-2020-14513.