CVE-2023-33121

LOW

3.3

Description

A vulnerability has been identified in JT2Go (All versions < V14.2.0.3), Teamcenter Visualization V13.2 (All versions < V13.2.0.13), Teamcenter Visualization V13.3 (All versions < V13.3.0.10), Teamcenter Visualization V14.0 (All versions < V14.0.0.6), Teamcenter Visualization V14.1 (All versions < V14.1.0.8), Teamcenter Visualization V14.2 (All versions < V14.2.0.3). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

Details CVE

Score CVSS v3.13.3

SeveriteLOW

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurREQUIRED

Publie6/13/2023

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

siemens:jt2gosiemens:teamcenter_visualization

Faiblesses (CWE)

CWE-476CWE-476

References

https://cert-portal.siemens.com/productcert/pdf/ssa-538795.pdf(productcert@siemens.com)

https://cert-portal.siemens.com/productcert/pdf/ssa-538795.pdf(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.