Lucene search
China National Vulnerability DatabaseCNVD-2021-53356HistoryJul 14, 2021 - 12:00 a.m.
Siemens Jt2go and Siemens Teamcenter Visualization Remote Code Execution Vulnerability
2021-07-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
51.3%
Siemens Jt2go and Siemens Teamcenter Visualization are both products of Siemens AG, Germany. Siemens Jt2go is a JT file viewer. A remote code execution vulnerability exists in Siemens JT2Go versions prior to 13.2 and Teamcenter Visualization versions prior to 13.2, which stems from a failure of the BMP_Loader.dll library to properly validate user-supplied data before performing further release operations on objects when parsing BMP files. An attacker could use this vulnerability to execute code in the context of the current process.
| CPE | Name | Operator | Version |
|---|---|---|---|
| siemens jt2go | lt | 13.2 | |
| siemens teamcenter visualization | lt | 13.2 |
Related
zdi
zdi
prion
prion
Design/Logic Flaw
2021-07-13 11:15:00
cve
cve
CVE-2021-34301
2021-07-13 11:15:10
cvelist
cvelist
CVE-2021-34301
2021-07-13 11:03:18
nvd
nvd
CVE-2021-34301
2021-07-13 11:15:10
nessus
nessus
Siemens JT2Go < 13.2 Multiple Vulnerabilities (SSA-483182)
2021-07-15 00:00:00
ics
ics
Siemens JT2Go and Teamcenter Visualization
2021-07-13 12:00:00