CVE-2021-40356

🗓️ 14 Sep 2021 10:48:00Reported by siemensType

CVE-2021-40356: Teamcenter XML External Entity Injection (XXE) vulnerabilit

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2021-40356	14 Sep 202114:20	–	circl
CNNVD	Teamcenter 代码问题漏洞	14 Sep 202100:00	–	cnnvd
CNVD	Siemens Teamcenter XML External Entity Injection (XXE) Vulnerability	15 Sep 202100:00	–	cnvd
Cvelist	CVE-2021-40356	14 Sep 202110:48	–	cvelist
EUVD	EUVD-2021-27534	3 Oct 202520:07	–	euvd
ICS	Siemens Teamcenter	14 Sep 202100:00	–	ics
NVD	CVE-2021-40356	14 Sep 202111:15	–	nvd
Prion	Xxe	14 Sep 202111:15	–	prion

NVD

Node

siemens teamcenter_visualizationRange12.4.0–12.4.0.8

siemens teamcenter_visualizationRange13.0.0–13.0.0.7

siemens teamcenter_visualizationRange13.1.0–13.1.0.5

siemens teamcenter_visualizationRange13.2.0–13.2.0.2

[
  {
    "product": "Teamcenter V12.4",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V12.4.0.8"
      }
    ]
  },
  {
    "product": "Teamcenter V13.0",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V13.0.0.7"
      }
    ]
  },
  {
    "product": "Teamcenter V13.1",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V13.1.0.5"
      }
    ]
  },
  {
    "product": "Teamcenter V13.2",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < 13.2.0.2"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-987403.pdf

21 Nov 2024 06:23Current

7.4High risk

Vulners AI Score7.4

CVSS 25

CVSS 3.17.5

EPSS0.00307

CWE-611