Security Vulnerabilities in CodeMeter Runtime (9/2020)
Description
dSPACE were informed by WIBU Systems, the supplier of the CodeMeter license technology used by dSPACE, about problems in the CodeMeter Runtime that were classified as a potential security risk.
These vulnerabilities potentially affect
- all dSPACE systems that have a CodeMeter installation and Internet access
- all systems with CodeMeter installation that are used as license servers
Detailed information is available in the user information provided by WIBU Systems under the following link. This information can also be used to determine the individual risk.
-
- View online
- Download
CodeMeter Update
The vulnerabilities were closed by WIBU Systems with CodeMeter version 7.10a. This new version has been tested and released by dSPACE.
dSPACE recommends the update to the current CodeMeter version published here for all CodeMeter Floating Network License Servers.
For PCs and virtual machines without Internet access, dSPACE rates the update as optional.
CodeMeter 7.10a is no longer compatible with Windows XP SP3. Therefore the update must not be installed on PCs or virtual machines that run legacy dSPACE releases under Windows XP SP3 based on CodeMeter Licenses and "Legacy Licensing using CodeMeter Licenses”.
CodeMeter Version Check
You find your current CodeMeter Runtime version under Windows 10 System Settings - Apps & features.
| Date | 2020-09-29 |
| Product | dSPACE Installation Manager |
| Information Type | Patches |
| Information Category | Installation and Licensing, Product Security |
| dSPACE Release | 2020-A, 2019-B, 2019-A, 2018-B, 2018-A, 2017-B |
| Keywords | CVE-2020-14509, CVE-2020-14513, CVE-2020-14515, CVE-2020-14517, CVE-2020-14519, CVE-2020-16233 |
Drive innovation forward. Always on the pulse of technology development.
Subscribe to our expert knowledge. Learn from our successful project examples. Keep up to date on simulation and validation. Subscribe to/manage dSPACE direct and aerospace & defense now.