Null pointer dereference

2023-08-0810:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

parasolid

teamcenter visualization

null pointer dereference

x_t files

code execution

nvd

0.001 Low

EPSS

Percentile

19.2%

JSON

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected applications contain null pointer dereference while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

CPENameOperatorVersion
parasolidge34.1
parasolidlt34.1.258
parasolidge35.0
parasolidlt35.0.254
parasolidge35.1
parasolidlt35.1.171
teamcenter_visualizationge14.2
teamcenter_visualizationlt14.2.0.6
teamcenter_visualizationge14.1
teamcenter_visualizationlt14.1.0.11

Name	Operator	Version
parasolid	ge	34.1
parasolid	lt	34.1.258
parasolid	ge	35.0
parasolid	lt	35.0.254
parasolid	ge	35.1
parasolid	lt	35.1.171
teamcenter_visualization	ge	14.2
teamcenter_visualization	lt	14.2.0.6
teamcenter_visualization	ge	14.1
teamcenter_visualization	lt	14.1.0.11

Rows per page:

1-10 of 121

References

cert-portal.siemens.com/productcert/pdf/ssa-407785.pdf

0.001 Low

EPSS

Percentile

19.2%

JSON

Related for PRION:CVE-2023-38524