WHAT HAPPENED?

Leica Microsystems has released Important updates to address vulnerabilities in various imaging software and products.

Advanced Users: For a complete description go to:

• 19.10.2020 – Leica Important Security Notice

AFFECTED SYSTEMS:

• LAS AF, LMD, PAULA, and LAS X versions for Confocal, Widefield, and Industry

WHAT'S THE PROBLEM?

The software vendor WIBU Systems disclosed vulnerabilities in their product CodeMeter. This product is widely used in the industry for license management and is also embedded in image acquisition software from Leica Microsystems (in product lines LAS X, LAS AF, PAULA, LMD). The ability to exploit the vulnerability is limited to computers connected to a network. In a worst-case scenario, an attacker could cause a denial-of-service condition and attain remote code execution on the PC where the acquisition software is installed.

RELATED LINKS

• IT Security
• ISC-CERT Wibu-Systems CodeMeter (Update C)