First published: Wed Sep 13 2023(Updated: )
A Improper Privilege Management vulnerability through an incorrect use of privileged APIs in CodeMeter Runtime versions prior to 7.60c allow a local, low privileged attacker to use an API call for escalation of privileges in order gain full admin access on the host system.
Credit: info@cert.vde.com info@cert.vde.com
Affected Software | Affected Version | How to fix |
---|---|---|
Wibu CodeMeter Runtime | <7.60c | |
Trumpf Oseon | >=1.0.0<=3.0.22 | |
Trumpf Programmingtube | >=1.0.1<=4.6.3 | |
Trumpf Teczonebend | >=18.02.r8<=23.06.01 | |
Trumpf Tops Unfold | =05.03.00.00 | |
Trumpf Topscalculation | >=14.00<=22.00.00 | |
Trumpf Trumpflicenseexpert | >=1.5.2<=1.11.1 | |
Trumpf Trutops | >=08.00<=12.01.00.00 | |
Trumpf Trutops Cell Classic | <=09.09.02 | |
Trumpf Trutops Cell Sw48 | >=01.00<=02.26.0 | |
Trumpf Trutops Mark 3d | >=01.00<=06.01 | |
Trumpf Trutopsboost | >=06.00.23.00<=16.0.22 | |
Trumpf Trutopsfab | >=15.00.23.00<=22.8.25 | |
Trumpf Trutopsfab Storage Smallstore | >=14.06.20<=20.04.20.00 | |
Trumpf Trutopsprint | >=00.06.00<=01.00 | |
Trumpf Trutopsprintmultilaserassistant | >=01.02 | |
Trumpf Trutopsweld | >=7.0.198.241<=9.0.28148.1 | |
Trumpf Tubedesign | >=08.00<=14.06.150 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-4701 is an Improper Privilege Management vulnerability in CodeMeter Runtime versions prior to 7.60c.
CVE-2023-4701 has a severity value of 7.8, which is considered high.
CodeMeter Runtime versions prior to 7.60c are affected by CVE-2023-4701.
A local, low privileged attacker can exploit CVE-2023-4701 through an incorrect use of privileged APIs to gain full admin access on the host system.
You can find more information about CVE-2023-4701 in the security advisories published by Wibu and VDE.