Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-3935
HistorySep 13, 2023 - 2:15 p.m.

CVE-2023-3935

2023-09-1314:15:09
CWE-787
[email protected]
web.nvd.nist.gov
1
vulnerability
heap buffer overflow
wibu codemeter runtime
rce
remote attacker
full access

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.9%

JSON

A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an unauthenticated, remote attacker to achieve RCE and gain full access of the host system.

Affected configurations

NVD
Node
wibucodemeter_runtimeRange<7.60c
Node
trumpfoseonRange1.0.03.0.22
OR
trumpfprogrammingtubeRange1.0.14.6.3
OR
trumpfteczonebendRange18.02.r823.06.01
OR
trumpftops_unfoldMatch05.03.00.00
OR
trumpftopscalculationRange14.0022.00.00
OR
trumpftrumpflicenseexpertRange1.5.21.11.1
OR
trumpftrutopsRange08.0012.01.00.00
OR
trumpftrutops_cell_classicRange09.09.02
OR
trumpftrutops_cell_sw48Range01.0002.26.0
OR
trumpftrutops_mark_3dRange01.0006.01
OR
trumpftrutopsboostRange06.00.23.0016.0.22
OR
trumpftrutopsfabRange15.00.23.0022.8.25
OR
trumpftrutopsfab_storage_smallstoreRange14.06.2020.04.20.00
OR
trumpftrutopsprintRange00.06.0001.00
OR
trumpftrutopsprintmultilaserassistantRange01.02
OR
trumpftrutopsweldRange7.0.198.2419.0.28148.1
OR
trumpftubedesignRange08.0014.06.150
Node
phoenixcontactactivation_wizardRange1.6moryx
OR
phoenixcontacte-mobility_charging_suiteRange1.7.0
OR
phoenixcontactfl_network_managerRange7.0
OR
phoenixcontactiol-confRange1.7.0
OR
phoenixcontactmodule_type_package_designerRange<1.2.0
OR
phoenixcontactmodule_type_package_designerMatch1.2.0beta
OR
phoenixcontactplcnext_engineerRange2023.6

Related

ics 3
cnvd 1
prion 2
cvelist 1
cve 2
nessus 1
nvd 1
ics
ics
Siemens WIBU Systems CodeMeter
2023-09-14 12:00:00
Rockwell Automation FactoryTalk Activation
2024-01-04 12:00:00
Siemens Desigo CC product family
2023-11-16 12:00:00
cnvd
cnvd
Siemens Industrial Products WIBU System CodeMeter Heap Buffer Overflow Vulnerability
2023-09-14 00:00:00
prion
prion
Heap overflow
2023-09-13 14:15:00
Design/Logic Flaw
2023-09-13 14:15:00
cvelist
cvelist
CVE-2023-3935 Wibu: Buffer Overflow in CodeMeter Runtime
2023-09-13 13:19:18
cve
cve
CVE-2023-3935
2023-09-13 14:15:09
CVE-2023-4701
2023-09-13 14:15:09
nessus
nessus
Rockwell FactoryTalk Activation Manager < 5.01 RCE
2024-01-22 00:00:00
nvd
nvd
CVE-2023-4701
2023-09-13 14:15:09

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.9%

JSON
Related for NVD:CVE-2023-3935
ics3cnvd1prion2cvelist1cve2nessus1nvd1