Memory Corruption Vulnerabilities in CodeMeter Packet Parser

Memory Corruption Vulnerabilities in CodeMeter Packet Parser

CVE-2020-14509 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted packets to exploit these vulnerabilities.

Learn more about our Web Application Penetration Testing UK.