SSA-368868 — Vulnetix

SSA-368868 PUBLISHED CVSS 8.800000190734863 HIGH

Several Siemens products (optionally) offer the use of WibuKey Dongles [1] for licensing. According to a recent publication by WIBU Systems (WIBU-94453 at [2]), the Windows device driver for these Dongles contains vulnerabilities as listed below. - [1] https://www.wibu.com/products/wibukey.html - [2] https://www.wibu.com/support/security-advisories.html WIBU Systems has released a new version for WibuKey for Windows. Siemens recommends to update this device driver on affected Windows client installations, where WibuKey Dongles are used. See also the chapter "Additional Information" for more details.

Risk Scores

CVSS 3.1

8.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
	PSS(R)SINCAL

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-368868.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-368868.json (circl)

Timeline

Oct 8, 2024 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-368868.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-368868.json advisory

Open in Interactive Console →