October 15, 2020

CISA has updated this advisory with additional information on mitigation measures. Read the advisory at CISA.

October 1, 2020

CISA has updated this advisory with additional information on mitigation measures. Read the advisory at CISA.

September 17, 2020

CISA has updated this advisory with additional information on the affected products and mitigation measures. Read the advisory at CISA.

September 9, 2020

CISA has published an advisory on buffer access with incorrect length value, inadequate encryption strength, origin validation error, improper input validation, improper verification of cryptographic signature, and improper resource shutdown or release vulnerabilities in Wibu-Systems CodeMeter. Successful exploitation of these vulnerabilities could allow an attacker to alter and forge a license file, cause a denial-of-service condition, potentially attain remote code execution, read heap data, and prevent normal operation of third-party software dependent on the CodeMeter. Wibu-Systems recommends a series of measures to mitigate the vulnerabilities. CISA also recommends a series of measures to mitigate the vulnerabilities. Read the advisory at CISA.