A vulnerability has been identified in JT2Go (All versions < V14.3.0.6), Teamcenter Visualization V13.3 (All versions < V13.3.0.13), Teamcenter Visualization V14.1 (All versions < V14.1.0.12), Teamcenter Visualization V14.2 (All versions < V14.2.0.9), Teamcenter Visualization V14.3 (All versions < V14.3.0.6). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted CGM files. This could allow an attacker to execute code in the context of the current process.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-794653.pdf | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
11 Jan 2024, 20:36
Type | Values Removed | Values Added |
---|---|---|
First Time |
Siemens teamcenter Visualization
Siemens Siemens jt2go |
|
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-794653.pdf - Vendor Advisory | |
CPE | cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
09 Jan 2024, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-09 10:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-51439
Mitre link : CVE-2023-51439
CVE.ORG link : CVE-2023-51439
JSON object : View
Products Affected
siemens
- jt2go
- teamcenter_visualization
CWE
CWE-125
Out-of-bounds Read