Multiple Vulnerabilities in CodeMeter Leave Managed...

Multiple Vulnerabilities in CodeMeter Leave Managed Industrial Control Systems Open to Attack

Several vulnerabilities discovered in CodeMeter by researchers at Claroty outline a possible exploit chain against CodeMeter Server. CISA has also released an ICS Advisory (ICSA-20-203-01). The vulnerabilities create a chain of attack for potential takeover of devices and controllers in an OT environment if managed by a vulnerable version of CodeMeter.

Tenable.ot customers should contact their Customer Success Manager (CSM) to get access to Suricata rules that can be used for detection. These rules will be fully integrated into the next service pack of the current release and later versions.

For more information about the vulnerability, including the availability of patches and Tenable product coverage, please visit our blog.

Cyber Exposure Alerts

Vulnerability Watch

Forum Discussion

Multiple Vulnerabilities in CodeMeter Leave Managed...

Recent Discussions

Frequently Asked Questions About Notepad++ Supply Chain Compromise

Ivanti Endpoint Manager Mobile Zero-Days Exploited (CVE-2026-1281, CVE-2026-1340)

Oracle January 2026 Critical Patch Update Addresses 158 CVEs

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Vulnerability

Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Americas

Europe

Asia / Australia