<p>Versions V5.0 through V8 of the Desigo CC product family (Desigo CC,
Desigo CC Compact, Desigo CC Connect, Cerberus DMS), as well as the
Desigo CC-based SENTRON Powermanager, are affected by a vulnerability in
the underlying third-party component WIBU Systems CodeMeter Runtime.
Successful exploitation of this vulnerability could allow privilege
escalation.</p>
<p>Siemens has released instructions how to update the CodeMeter Runtime
component and recommends to apply the update on affected systems.</p>
Source link
