Lucene search

CVE-2020-26981

🗓️ 12 Jan 2021 21:16:15Reported by siemensType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 47 Views

A vulnerability in JT2Go, Teamcenter Visualization allows remote attackers to disclose arbitrary files via specially crafted XML file. (CVE-2020-26981

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Zero Day Initiative	Siemens JT2Go PLMXML File Parsing XML External Entity Processing Information Disclosure Vulnerability	14 Jan 202100:00	–	zdi
Prion	Code injection	12 Jan 202121:15	–	prion
Cvelist	CVE-2020-26981	12 Jan 202120:18	–	cvelist
NVD	CVE-2020-26981	12 Jan 202121:15	–	nvd
Tenable Nessus	Siemens JT2Go < 13.1.0 Multiple Vulnerabilities (SSA-622830)	29 Jan 202100:00	–	nessus
ICS	Siemens JT2Go and Teamcenter Visualization (Update B)	12 Jan 202100:00	–	ics

Nvd

Node

siemens jt2goRange<13.1.0

siemens teamcenter_visualizationRange<13.1.0

[
  {
    "product": "JT2Go",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V13.1.0"
      }
    ]
  },
  {
    "product": "Teamcenter Visualization",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V13.1.0"
      }
    ]
  }
]

Source	Link
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-21-048/
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-622830.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Jan 2021 21:15Current

6.6Medium risk

Vulners AI Score6.6

CVSS24.3

CVSS36.5

EPSS0.00403

CWE-611