Every CVE whose affected-product data names Wibu Codemeter, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2020-14509 — CVSS 9.8 (critical): Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not…
CVE-2020-14517 — CVSS 9.8 (critical): Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Version 6.90 or newer only if…
CVE-2021-20093 — CVSS 9.1 (critical): A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this…
CVE-2020-14519 — CVSS 7.5 (high): This vulnerability allows an attacker to use the internal WebSockets API for CodeMeter (All versions prior to 7.00 are affected, including…
CVE-2020-16233 — CVSS 7.5 (high): An attacker could send a specially crafted packet that could have CodeMeter (All versions prior to 7.10) send back packets containing data…
CVE-2021-20094 — CVSS 7.5 (high): A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this…
CVE-2020-14513 — CVSS 7.5 (high): CodeMeter (All versions prior to 6.81) and the software using it may crash while processing a specifically crafted license file due to…
CVE-2020-14515 — CVSS 7.5 (high): CodeMeter (All versions prior to 6.90 when using CmActLicense update files with CmActLicense Firm Code) has an issue in the license-file…
CVE-2017-13754 — CVSS 5.4 (medium): Cross-site scripting (XSS) vulnerability in the "advanced settings - time server" module in Wibu-Systems CodeMeter before 6.50b allows…