CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2021/12/14 12:15 p.m.•10 views

Out-of-bounds

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The Jt1001.dll is vulnerable to an out of bounds read past the end of an allocated buffer when parsing specially crafted JT files. An attacker could leverage this vulnerability to...

Prion•added 2021/12/14 12:15 p.m.•18 views

Out-of-bounds

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The Image.dll is vulnerable to an out of bounds read past the end of an allocated buffer when parsing specially crafted TIF files. An attacker could leverage this vulnerability to...

Prion•added 2021/12/14 12:15 p.m.•16 views

Out-of-bounds

4.3CVSS5.7AI score0.00226EPSS

Prion•added 2021/12/14 12:15 p.m.•17 views

Design/Logic Flaw

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The TiffLoader.dll contains an off-by-one error in the heap while parsing specially crafted TIFF files. This could allow an attacker to cause a denial-of-service condition...

4.3CVSS5.8AI score0.00164EPSS

Prion•added 2021/12/14 12:15 p.m.•12 views

Design/Logic Flaw

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The TiffLoader.dll contains an out of bounds write past the end of an allocated structure while parsing specially crafted TIFF files. This could allow an attacker to execute code ...

6.8CVSS7.7AI score0.00418EPSS

Prion•added 2021/12/14 12:15 p.m.•17 views

Out-of-bounds

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The Jt1001.dll is vulnerable to an out of bounds read past the end of an allocated buffer while parsing specially crafted JT files. An attacker could leverage this vulnerability t...

Prion•added 2021/12/14 12:15 p.m.•15 views

Out-of-bounds

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The VCRUNTIME140.dll is vulnerable to an out of bounds read past the end of an allocated buffer when parsing specially crafted CGM files. An attacker could leverage this...

Prion•added 2021/12/14 12:15 p.m.•12 views

Design/Logic Flaw

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The DL180pdfl.dll contains an out of bounds write past the end of an allocated structure while parsing specially crafted PDF files. This could allow an attacker to execute code in...

6.8CVSS7.7AI score0.00405EPSS

Cvelist•added 2021/12/14 12:6 p.m.•12 views

CVE-2021-44017

5.4AI score0.00197EPSS

CVE•added 2021/12/14 12:6 p.m.•46 views

CVE-2021-44017

CVE-2021-44017 affects Siemens JT2Go and Teamcenter Visualization (versions before 13.2.0.5). The issue is an out-of-bounds read in Image.dll while parsing specially crafted TIFF files, which can leak information in the context of the current process. ZDI confirms the flaw exists in TIFF parsing ...

Cvelist•added 2021/12/14 12:6 p.m.•10 views

CVE-2021-44015

5.4AI score0.00197EPSS

CVE•added 2021/12/14 12:6 p.m.•54 views

CVE-2021-44015

Siemens JT2Go and Teamcenter Visualization are affected. Vulnerability CVE-2021-44015 is an out-of-bounds read in CGM file parsing that can leak information via VCRUNTIME140.dll; root cause is improper validation while parsing specially crafted CGM files. Impact is information disclosure within t...

Cvelist•added 2021/12/14 12:6 p.m.•14 views

CVE-2021-44013

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The DL180pdfl.dll contains an out of bounds write past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in...

7.9AI score0.00405EPSS

CVE•added 2021/12/14 12:6 p.m.•42 views

CVE-2021-44013

CVE-2021-44013 affects Siemens JT2Go and Teamcenter Visualization (pre-13.2.0.5). The DL180pdfl.dll parsing path contains an out-of-bounds write past the end of an allocated structure when processing JT files, allowing an attacker to execute code in the current process. The ZDI advisory notes tha...

7.8CVSS7.7AI score0.00405EPSS

CVE•added 2021/12/14 12:6 p.m.•53 views

CVE-2021-44012

CVE-2021-44012 affects Siemens JT2Go and Teamcenter Visualization (all versions prior to 13.2.0.5). The Jt1001.dll parsing of JT files can trigger an out-of-bounds read past the end of an allocated buffer, enabling information disclosure within the current process. Public references identify ZDI-...

Cvelist•added 2021/12/14 12:6 p.m.•13 views

CVE-2021-44012

5.4AI score0.00197EPSS

CVE•added 2021/12/14 12:6 p.m.•45 views

CVE-2021-44011

The CVE-2021-44011 entry concerns Siemens JT2Go and Teamcenter Visualization (pre-13.2.0.5) where the Jt1001.dll is vulnerable to an out-of-bounds read past the end of an allocated buffer while parsing JT files. The vulnerability could leak information in the current process context. Affected pro...