Siemens Solid Edge Heap Buffer Overflow Vulnerability (CNVD-2021-51465)

Siemens Solid Edge is a group of software tools for dealing with various product development processes: 3D design, simulation, manufacturing and design management. A heap buffer overflow vulnerability exists in Siemens Solid Edge. In the affected application, the PLMXMLADATESE70.DLL library lacks...

Siemens JT2Go and Teamcenter Visualization out-of-bounds write vulnerability (CNVD-2021-51468)

Siemens Jt2go is a JT file viewer.Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios. An out-of-bounds write vulnerability exists in Siemens JT2Go versions prior to 13.2 and Teamcenter Visualization versions prior to 13.2. The...

CVE-2021-34330

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing JT files. An attacker...

CVE-2021-34331

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Jt981.dll library in affected applications lacks proper validation of user-supplied data when parsing JT files. This could result in an out of bounds write past the end of an allocate...

CVE-2021-34321

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The VisDraw.dll library in affected applications lacks proper validation of user-supplied data when parsing J2K files. This could result in an out of bounds read past the end of an...

CVE-2021-34324

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing JT files. An attacker...

CVE-2021-34308

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The BMPLoader.dll library in affected applications lacks proper validation of user-supplied data when parsing BMP files. This could result in an out of bounds read past the end of an...

CVE-2021-34305

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Gifloader.dll library in affected applications lacks proper validation of user-supplied data when parsing GIF files. This could result in an out of bounds write past the end of an...

Default credentials

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Jt981.dll library in affected applications lacks proper validation of user-supplied data when parsing JT files. This could result in an out of bounds write past the end of an allocate...

Design/Logic Flaw

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The JPEG2KLoader.dll library in affected applications lacks proper validation of user-supplied data when parsing J2K files. This could result in an out of bounds read past the end of an...

Code injection

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing JT files. An attacker...

CVE-2021-34330

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing JT files. An attacker...

CVE-2021-34325

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Jt981.dll library in affected applications lacks proper validation of user-supplied data when parsing JT files. This could result in an out of bounds read past the end of an allocated...

CVE-2021-34322

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The JPEG2KLoader.dll library in affected applications lacks proper validation of user-supplied data when parsing J2K files. This could result in an out of bounds read past the end of an...

CVE-2021-34313

CVE-2021-34313 affects Siemens JT2Go and Teamcenter Visualization prior to version 13.2. The Tiff_loader.dll parser fails to validate TIFF input, causing an out-of-bounds write on a heap-allocated buffer and enabling code execution in the context of the current process (ZDI-13354). The issue is d...

CVE-2021-34303

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The TiffLoader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF files. This could result in an out of bounds read past the end of an...

CVE-2021-34303

CVE-2021-34303 affects Siemens JT2Go (all versions < 13.2) and Teamcenter Visualization (all versions

CVE-2021-34298

CVE-2021-34298 affects Siemens JT2Go and Teamcenter Visualization (versions prior to 13.2). The BMP_Loader.dll parses BMP files and lacks proper validation, enabling an attacker to execute code in the current process with local, likely remoteом? exploitation described by ZDI—double free in BMP pa...

CVE-2021-34297

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The BMPLoader.dll library in affected applications lacks proper validation of user-supplied data when parsing BMP files. This could result in an out of bounds write past the end of an...

CVE-2021-34293

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The Gifloader.dll library in affected applications lacks proper validation of user-supplied data when parsing GIF files. This could result in an out of bounds write past the end of an...