Total vulnerabilities in the database
In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked file without checking permissions.
| Software | From | Fixed in |
|---|---|---|
| wibu / codemeter_runtime | - | 7.30a |
| siemens / simatic_pcs_neo | - | - |
| siemens / sicam_230 | - | 8.0 |
| siemens / pss_odms | - | 12.2.6.1 |
| siemens / pss_e | 35.0.0 | 35.3.2 |
| siemens / pss_e | 34.0.0 | 34.9.1 |
| siemens / simit | - | 10.0.x |
| siemens / simatic_wincc_oa | - | 3.18.x |
| siemens / simatic_process_historian | - | 2019.x |
| siemens / simatic_information_server | 2019-sp1 | 2019-sp1.x |
| siemens / simatic_information_server | - | 2019 |
| siemens / simatic_information_server | 2019 | 2019.x |
| siemens / pss_cape | 14 | 14.x |