VDB
CVE-2023-3935
CVE-2023-3935
PUBLISHED
Es besteht eine Schwachstelle in Wibu-Systems CodeMeter. Dieser Fehler besteht aufgrund eines Heap-Pufferüberlaufs in der Runtime-Komponente. Ein entfernter, anonymer Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern.
EPSS 0.41% · 61.9th percentile
Risk Scores
EPSS Score
0.41%
61.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wibu-Systems | Wibu-Systems CodeMeter | |
| CODESYS | CODESYS CODESYS | |
| ABB | ABB AC-500 <3.8.0 |
Timeline
- Sep 12, 2023 CVE Published
- Sep 14, 2023 EPSS Score
- Oct 16, 2023 EPSS Score
- Nov 18, 2023 EPSS Score
- Dec 20, 2023 EPSS Score
- Jan 22, 2024 EPSS Score
- Feb 23, 2024 EPSS Score
- Mar 26, 2024 EPSS Score
- Apr 28, 2024 EPSS Score
- Jul 1, 2024 EPSS Score
- Aug 3, 2024 EPSS Score
- Sep 4, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2311.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2311 advisory
- https://cert-portal.siemens.com/productcert/html/ssa-240541.html advisory
- https://cdn.wibu.com/fileadmin/wibu_downloads/security_advisories/AdvisoryWIBU-230802-01.pdf advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0943 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0943.json advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17090&token=6cd08b169916366df31388d2e7ba58e7bce93508&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17555&token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17764&token=4b2f3cf3a800d076b22f18d49f278bd8883dbd46&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17765&token=04e117e1408fdb8e02b4bc821aa3be819668aef4&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17766&token=667d36292e99e6f6b7eb8c0b4a86d27137c31f98&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17767&token=7ed2d9324eff98a0a319c455d0256dc7627c705e&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17768&token=9d206ea9e0449cd9d3ee60d5179d2761dad2d2dd&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17769&token=a1a34cd304aebfbc1e2619e401a9a6cb5d4dc117&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17809&token=c3b4e3ec4956099de26f0c6caf194d1ba341040a&download= advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18027&token=43109051cf95d3445bc616e4efb8414336ebcc47&download= advisory
- https://search.abb.com/library/Download.aspx?DocumentID=3ADR011377&LanguageCode=en&DocumentPartId=CSAF&Action=Launch advisory