What the vulnerability does

01Description

Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted packets to exploit these vulnerabilities.

Key dates

02Disclosure timeline

September 16, 2020 CVE published
August 4, 2024 Record updated