zenon Security
FAQ: SQL Server 2019 End of Life and Product Update Recommendations
This article contains link to external information not maintained by Ing. Punzenberger COPA-DATA Gmbh. Which SQL Server version is included in your installation? In the zenon versions 12, 11, and 10, the installation package included Microsoft SQL ...
CD_SVA_2025_01: zenon Remote Transport Vulnerability
What you should know The vulnerability targets a specific function of the zenon Remote Transport Service. The underlying weaknesses is CWE-306: ‘Missing Authentication for Critical Function’. The versions listed below are affected by this ...
Wibu-Systems - CodeMeter Control Center for Windows version - security vulnerabilities addressed WIBU-100120
COPA-DATA has been informed by Wibu-Systems about a security vulnerability in the Wibu-Systems CodeMeter Control Center for Windows software with the following CVSS 3.1 base score: CVE-2025-47809 – base score 7.7 - vector ...
Security Vulnerabilities in “Telerik UI for WPF” and “Telerik UI for WinForms”
Summary During a CTI session the Security Management Team of COPA-DATA HQ found a series of vulnerabilities in a 3rd-party-library used in the zenon Software Platform. The security vulnerabilities (CVEs) disclosed by Progress Software Corporation ...
FAQ: Are products in the zenon product family affected by the vulnerability, labelled BlastRADIUS?
The vulnerability labelled BlastRADIUS is a vulnerability in the RADIUS protocol, also known under the reference CVE-2024-3596. The zenon IIoT Services Identity Service supports an Identity Provider for authentication against RADIUS server, that can ...
CD_SVA_2024_1: Vulnerability in the zenon Software Platform Engineering Studio and Service Engine
Summary COPA-DATA has received a report by an external party detailing a security vulnerability in the zenon Software Platform and its OEM versions on Windows systems. This vulnerability has been fixed. Description A security vulnerability in the ...
CD_SVA_2023_3: CodeMeter Runtime Security Vulnerability: CodeMeter Library used for the Service Engine on Linux should be updated for version 12 and version 14
Summary Security vulnerability in CodeMeter Runtime fixed. Description The CodeMeter Runtime necessary for zenon license management contains in version 7.60b a security vulnerability for the Service Engine under Linux. For zenon versions 12 and 14 ...
CD_SVA_2023_3: Wibu Systems - CodeMeter Runtime - security vulnerability addressed
A report has been received for the following security vulnerability in the zenon software platform: CVE-2023-3935 Further details regarding the vulnerability, mitigation options and product fixes that may be available, can be found in the document ...
CD_SVA_2023_2: security vulnerabilities in the zenon platform
A report has been received for the following security vulnerabilities in the zenon software platform: CVE-2023-3321 CVE-2023-3323 CVE-2023-3324 Further details regarding the vulnerabilities, mitigation options and product fixes that may be available, ...
FAQ: Are products in the zenon software platform impacted by the changes taking effect on June 14th 2022 as described by Microsoft in KB5004442 ?
In the article KB5004442 published in 2021, Microsoft informs about upcoming changes to DCOM security, taking effect automatically on June 14th 2022. From this date, Windows systems with current security updates, require DCOM client and server ...
FAQ: CD_SVA_2022_1: Vulnerability in zenon Software platform
Summary COPA-DATA received a report from Security Researcher Ruben Santamarta detailing a security vulnerability for the zenon Logging Service which is part of the zenon platform standard deployment. Based on this vulnerability additional ...
Security Vulnerability: Improper validation of telegrams received by the DNP3_NG driver may allow an attacker to affect the system stability
Summary Tests conducted with the DNP3_NG driver have uncovered an issue with the validation of received telegrams in the DNP3_NG driver. Further information can be found here DescriptionTests conducted with the DNP3_NG driver have uncovered an issue ...
Security Vulnerability: Improper validation of telegrams received by the DNP3 process gateway may allow an attacker to cause an instability of the system.
Summary Tests conducted with the DNP3 process gateway have uncovered an issue with the validation of received telegrams in the DNP3 Process Gateway. Further information can be found here Description Tests conducted with the DNP3 process gateway have ...
CD_SVA_2019_1: Wibu Systems - WibuKey Runtime for Windows version - security vulnerabilties addressed
Summary COPA-DATA has been informed by Wibu Systems of three security vulnerabilties in the WibuKey Runtime for Windows software. The WibuKey Runtime for Windows software is used by COPA-DATA products for dongle licensing with WibuKey dongles and has ...
CD_SVA_2018_1: Can Windows updates cause data communication problems with zenon?
Summary Solution We can confirm that the following Microsoft Patches resolve communication problems with zenon. All initially reported issues have been resolved and updated versions of the January 3rd security updates have been released. KB4057401 ...
CD_SVA_2019_5: COPA-DATA editor - security vulnerabilty addressed
Summary Solution COPA-DATA has received a report by Yongjun liu of nsfocus security team, through a COPA-DATA OEM customer, detailing a security vulnerability in the COPA-DATA zenon editor software and OEM versions of this software. The following ...
Security Vulnerabilities in the CodeMeter User Runtime software versions 7.00 and lower
Summary We were informed by our supplier Wibu-Systems about six severe and critical Security Issues within their product the "CodeMeter User Runtime" software. A new version 7.10a of the CodeMeter User Runtime software is available from Wibu Systems ...
Security Vulnerabilities in all versions of the CodeMeter User Runtime software
Summary We were informed by our supplier Wibu-Systems about two severe and critical Security Issues within their product the "CodeMeter User Runtime" software. A new version 7.21a of the CodeMeter User Runtime software is available from Wibu Systems ...
Security Vulnerability in the CodeMeter User Runtime software
Summary We were informed by our supplier Wibu-Systems about a severe Security Issue within their product the "CodeMeter User Runtime" software. A new version 7.30a of the CodeMeter User Runtime software is available from Wibu Systems from 05.10.2021, ...
FAQ: What are Installation and Security considerations of the zenon Smart Server and Smart Client?
The attached document (English only) describes in some detail the specifics of the zenon Smart Server Application and the zenon Smart Client Application. Also a short explanation of security features and components is given. More information about ...