Aggregates CVE and security vulnerability intelligence across all trumpf-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk memory corruption and vendor risk buffer overflow and related problems; some flaws may lead to vendor impact memory corruption and vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-3935 | A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an unauthenticated, remote attacker to achieve RCE and gain full access of the host system. | [email protected] | 9.8 | 0.41% | 2023-09-13 | 2024-11-21 |
| CVE-2022-2052 | Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system. | [email protected] | 9.8 | 0.36% | 2022-10-17 | 2024-11-21 |
| CVE-2022-1300 | Multiple Version of TRUMPF TruTops products expose a service function without necessary authentication. Execution of this function may result in unauthorized access to change of data or disruption of the whole service. | [email protected] | 9.8 | 0.57% | 2022-05-02 | 2024-11-21 |