Wibu Wibu

  1. Vendors
  2. Wibu
Do you want an email whenever new security vulnerabilities are reported in any Wibu product?

Products by Wibu Sorted by Most Security Vulnerabilities since 2018

Wibu Codemeter4 vulnerabilities

Wibu Codemeter Runtime2 vulnerabilities

By the Year

In 2024 there have been 0 vulnerabilities in Wibu . Last year Wibu had 2 security vulnerabilities published. Right now, Wibu is on track to have less security vulnerabilities in 2024 than it did last year.

Year Vulnerabilities Average Score
2024 0 0.00
2023 2 9.80
2022 0 0.00
2021 2 8.30
2020 2 9.80
2019 0 0.00
2018 0 0.00

It may take a day or so for new Wibu vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Wibu Security Vulnerabilities

** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as the vendor eventually states

CVE-2023-4701 - September 13, 2023

** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as the vendor eventually states that this issue is identical to CVE-2023-3935

A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b

CVE-2023-3935 9.8 - Critical - September 13, 2023

A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an unauthenticated, remote attacker to achieve RCE and gain full access of the host system.

Memory Corruption

A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a

CVE-2021-20094 7.5 - High - June 16, 2021

A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to crash the CodeMeter Runtime Server.

Out-of-bounds Read

A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a

CVE-2021-20093 9.1 - Critical - June 16, 2021

A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to disclose heap memory contents or crash the CodeMeter Runtime Server.

Out-of-bounds Read

Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Version 6.90 or newer only if CodeMeter Runtime is running as server) and the server accepts external connections, which may

CVE-2020-14517 9.8 - Critical - September 16, 2020

Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Version 6.90 or newer only if CodeMeter Runtime is running as server) and the server accepts external connections, which may allow an attacker to remotely communicate with the CodeMeter API.

Use of a Broken or Risky Cryptographic Algorithm

Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields

CVE-2020-14509 9.8 - Critical - September 16, 2020

Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted packets to exploit these vulnerabilities.

Built by Foundeo Inc., with data from the National Vulnerability Database (NVD), Icons by Icons8. Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.