SIEMENS-SSA-368868 · Published 2024-10-08 · View on Siemens ProductCERT ↗

SSA-368868 V1.0: Multiple Vulnerabilities in WibuKey for Windows

CVSS N/A MEDIUM

Risk Summary

<p>Several Siemens products (optionally) offer the use of WibuKey Dongles [1] for licensing. According to a recent publication by WIBU Systems (WIBU-94453 at [2]), the Windows device driver for these Dongles contains vulnerabilities as listed below.</p> <ul> <li>[1] <a href="https://www.wibu.com/products/wibukey.html" class="uri">https://www.wibu.com/products/wibukey.html</a></li> <li>[2] <a href="https://www.wibu.com/support/security-advisories.html" class="uri">https://www.wibu.com/support/security-advisories.html</a></li> </ul> <p>WIBU Systems has released a new version for WibuKey for Windows. Siemens recommends to update this device driver on affected Windows client installations, where WibuKey Dongles are used. See also the chapter “Additional Information” for more details.</p>

Remediations

Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-368868 V1.0: Multiple Vulnerabilities in WibuKey for Windows See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more