← back
CVE-2020-14509

CVE-2020-14509

EPSS 2.0%CWE-805
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 2.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
16 Sep 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted packets to exploit these vulnerabilities.
Affected products
n/a · CodeMeter

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://us-cert.cisa.gov/ics/advisories/icsa-20-203-01