cvelist/2020/14xxx/CVE-2020-14509.json

{
    "data_type": "CVE",
    "data_format": "MITRE",
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2020-14509",
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "n/a",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "CodeMeter",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "All versions prior to 7.10"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "BUFFER ACCESS WITH INCORRECT LENGTH VALUE CWE-805"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "refsource": "MISC",
                "name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-203-01",
                "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-203-01"
            }
        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted packets to exploit these vulnerabilities."
            }
        ]
    }
}
"-Synchronized-Data." 2020-06-19 17:02:01 +00:00			`{`
			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"data_version": "4.0",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2020-14509",`
"-Synchronized-Data." 2020-09-16 20:01:46 +00:00			`"ASSIGNER": "ics-cert@hq.dhs.gov",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "n/a",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "CodeMeter",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "All versions prior to 7.10"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "BUFFER ACCESS WITH INCORRECT LENGTH VALUE CWE-805"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"refsource": "MISC",`
			`"name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-203-01",`
			`"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-203-01"`
			`}`
			`]`
"-Synchronized-Data." 2020-06-19 17:02:01 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2020-09-16 20:01:46 +00:00			`"value": "Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted packets to exploit these vulnerabilities."`
"-Synchronized-Data." 2020-06-19 17:02:01 +00:00			`}`
			`]`
			`}`
			`}`