Wibu: >> Codemeter Runtime >> 5.10c Security Vulnerabilities
A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an unauthenticated, remote attacker to achieve RCE and gain full access of the host system.
CVSS Score
9.8
EPSS Score
0.002
Published
2023-09-13
In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked file without checking permissions.
CVSS Score
7.1
EPSS Score
0.002
Published
2021-11-14
Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions (read and write access for all users) for codemeter.exe, which allows local users to gain privileges via a Trojan horse file.
CVSS Score
7.2
EPSS Score
0.0
Published
2014-11-26