<p>Versions V6.0 through V8 QU1 of the Desigo CC product family (Desigo
CC, Desigo CC Compact, Desigo CC Connect, Cerberus DMS), as well as the
Desigo CC-based SENTRON Powermanager, are affected by a vulnerability in
the underlying third-party component WIBU Systems CodeMeter Runtime.
Successful exploitation of this vulnerability could lead to code
execution in the context of the current process.</p>
<p>Siemens has released instructions how to update the CodeMeter Runtime
component and recommends to apply the update on affected systems.</p>
Source link
