CVE-2024-45182

An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70 An improper bounds check allows specially crafted packets to cause an arbitrary address read, resulting in Denial of Service.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:wibu:wibukey:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

29 Oct 2024, 21:35

Type Values Removed Values Added
CWE CWE-404

18 Sep 2024, 20:26

Type Values Removed Values Added
References () https://cdn.wibu.com/fileadmin/wibu_downloads/security_advisories/AdvisoryWIBU-94453.pdf - () https://cdn.wibu.com/fileadmin/wibu_downloads/security_advisories/AdvisoryWIBU-94453.pdf - Mitigation, Vendor Advisory
References () https://wibu.com - () https://wibu.com - Product
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5
Summary
  • (es) Se descubrió un problema en WibuKey64.sys en WIBU-SYSTEMS WibuKey anterior a v6.70 y se solucionó en v.6.70. Una verificación de los límites incorrecta permite que paquetes especialmente manipulados provoquen una lectura de dirección arbitraria, lo que resulta en una denegación de servicio.
CPE cpe:2.3:a:wibu:wibukey:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
First Time Wibu
Wibu wibukey
Microsoft windows
Microsoft
CWE CWE-125

12 Sep 2024, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-12 19:15

Updated : 2024-10-29 21:35


NVD link : CVE-2024-45182

Mitre link : CVE-2024-45182

CVE.ORG link : CVE-2024-45182


JSON object : View

Products Affected

wibu

  • wibukey

microsoft

  • windows
CWE
CWE-125

Out-of-bounds Read

CWE-404

Improper Resource Shutdown or Release