#VU46533 Origin validation error in CodeMeter Runtime - CVE-2020-14519

Cybersecurity Help s.r.o.

Published: 2020-09-09

Vulnerability identifier: #VU46533

Vulnerability risk: High

CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2020-14519

CWE-ID: CWE-346

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
CodeMeter Runtime
Server applications / DLP, anti-spam, sniffers

Vendor: Wibu Systems

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to origin validation error. A remote attacker can use the internal WebSockets API via a specifically crafted Java Script payload and alter or create license files when combined with CVE-2020-14515.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

CodeMeter Runtime: before 7.10a

External links
https://ics-cert.us-cert.gov/advisories/icsa-20-203-01
https://www.wibu.com/fileadmin/wibu_downloads/security_advisories/Advisory_WIBU-200521-02.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Siemens Energy Products

Multiple vulnerabilities in Wibu-Systems CodeMeter