CVE-2023-38072

🗓️ 12 Sep 2023 09:32:15Reported by siemensType

Vulnerability in JT2Go, Teamcenter Visualization, and Tecnomatix Plant Simulatio

Reporter	Title	Published	Views	Family All 14
Circl	CVE-2023-38072	12 Sep 202314:23	–	circl
CNNVD	Siemens JT2GO 缓冲区错误漏洞	12 Sep 202300:00	–	cnnvd
CNVD	Siemens Teamcenter Visualization and JT2Go Out-of-Bounds Write Vulnerability (CNVD-2023-69808)	14 Sep 202300:00	–	cnvd
Cvelist	CVE-2023-38072	12 Sep 202309:32	–	cvelist
EUVD	EUVD-2023-41898	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Siemens products	12 Sep 202300:00	–	ncsc
NCSC	Vulnerabilities fixed in Siemens products	10 Oct 202300:00	–	ncsc
NCSC	Vulnerabilities fixed in Siemens products	14 Nov 202300:00	–	ncsc
NVD	CVE-2023-38072	12 Sep 202310:15	–	nvd
Prion	Design/Logic Flaw	12 Sep 202310:15	–	prion

NVD

Node

siemens jt2goRange<14.3.0.1

siemens teamcenter_visualizationRange13.3.0–13.4.0.12

siemens teamcenter_visualizationRange14.0–14.1.0.11

siemens teamcenter_visualizationRange14.2–14.2.0.6

siemens teamcenter_visualizationRange14.3–14.3.0.1

siemens tecnomatix_plant_simulationRange2201.0–2201.0010

siemens tecnomatix_plant_simulationRange2302.0–2302.0004

[
  {
    "vendor": "Siemens",
    "product": "JT2Go",
    "versions": [
      {
        "version": "All versions < V14.3.0.1",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Teamcenter Visualization V13.3",
    "versions": [
      {
        "version": "All versions < V13.3.0.12",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Teamcenter Visualization V14.0",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Teamcenter Visualization V14.1",
    "versions": [
      {
        "version": "All versions < V14.1.0.11",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Teamcenter Visualization V14.2",
    "versions": [
      {
        "version": "All versions < V14.2.0.6",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Teamcenter Visualization V14.3",
    "versions": [
      {
        "version": "All versions < V14.3.0.1",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Tecnomatix Plant Simulation V2201",
    "versions": [
      {
        "version": "All versions < V2201.0010",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Tecnomatix Plant Simulation V2302",
    "versions": [
      {
        "version": "All versions < V2302.0004",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-478780.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-278349.pdf

21 Nov 2024 08:12Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.8

EPSS0.00041

CWE-787