Siemens JT2Go and Teamcenter Visualization Dual Release Vulnerability (CNVD-2022-36381)

Siemens Jt2go is a JT file viewer. Siemens Teamcenter Visualization is a software that provides team collaboration capabilities for designing 2D and 3D scenes. Siemens JT2Go and Teamcenter Visualization are vulnerable and can be exploited by attackers to The vulnerability can be exploited to...

CVE-2022-29033

The CVE-2022-29033 entry concerns Siemens JT2Go and Teamcenter Visualization (JT2Go, v13.3.x and Teamcenter Visualization v13.3/v14.0 prior to the patched builds). The vulnerability is a use-after-free/uninitialized pointer issue in CGM_NIST_Loader.dll while parsing specially crafted CGM files, p...

CVE-2022-29033

A vulnerability has been identified in JT2Go All versions V13.3.0.3, Teamcenter Visualization V13.3 All versions V13.3.0.3, Teamcenter Visualization V14.0 All versions V14.0.0.1. The CGMNISTLoader.dll library is vulnerable to uninitialized pointer free while parsing specially crafted CGM files. A...

CVE-2022-29032

A vulnerability has been identified in JT2Go All versions V13.3.0.3, Teamcenter Visualization V13.3 All versions V13.3.0.3, Teamcenter Visualization V14.0 All versions V14.0.0.1. The CGMNISTLoader.dll library contains a double free vulnerability while parsing specially crafted CGM files. An...

CVE-2022-29032

The CVE-2022-29032 entry applies to Siemens JT2Go and Teamcenter Visualization (versions before 13.3.0.3/14.0.0.1). The CGM_NIST_Loader.dll contains a double-free flaw when parsing specially crafted CGM files, which could allow code execution in the current process. Affected products: JT2GO (all ...

CVE-2022-29031

CVE-2022-29031 affects Siemens JT2Go and Teamcenter Visualization. The CGM_NIST_Loader.dll contains a null pointer dereference when parsing specially crafted CGM files, which can crash the application and cause a denial-of-service. Affected: JT2Go (all versions < 13.3.0.3); Teamcenter Visualiz...

CVE-2022-29031

A vulnerability has been identified in JT2Go All versions V13.3.0.3, Teamcenter Visualization V13.3 All versions V13.3.0.3, Teamcenter Visualization V14.0 All versions V14.0.0.1. The CGMNISTLoader.dll contains a null pointer dereference vulnerability while parsing specially crafted CGM files. An...

CVE-2022-29030

The CVE-2022-29030 entry affects Siemens JT2Go and Teamcenter Visualization: specifically JT2Go all versions before 13.3.0.3, Teamcenter Visualization v13.3 before 13.3.0.3, and v14.0 before 14.0.0.1. The root cause is an integer overflow in Mono_Loader.dll while parsing specially crafted TG4 fil...

CVE-2022-29030

A vulnerability has been identified in JT2Go All versions V13.3.0.3, Teamcenter Visualization V13.3 All versions V13.3.0.3, Teamcenter Visualization V14.0 All versions V14.0.0.1. The MonoLoader.dll library is vulnerable to integer overflow condition while parsing specially crafted TG4 files. An...

CVE-2022-29029

CVE-2022-29029 affects Siemens JT2Go and Teamcenter Visualization (JT2Go all versions before 13.3.0.3; Teamcenter Visualization v13.3 before 13.3.0.3; v14.0 before 14.0.0.1). The CGM_NIST_Loader.dll contains a null pointer dereference while parsing specially crafted CGM files, enabling a denial-o...

CVE-2022-29029

A vulnerability has been identified in JT2Go All versions V13.3.0.3, Teamcenter Visualization V13.3 All versions V13.3.0.3, Teamcenter Visualization V14.0 All versions V14.0.0.1. The CGMNISTLoader.dll contains a null pointer dereference vulnerability while parsing specially crafted CGM files. An...

CVE-2022-29028

CVE-2022-29028 affects Siemens JT2Go and Teamcenter Visualization: the Tiff_Loader.dll can enter an infinite loop while parsing specially crafted TIFF files, potentially crashing the application and causing denial of service. Affected products/versions are JT2GO all versions before 13.3.0.3, Team...

Siemens JT2GO and Teamcenter Visualization

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT2GO, Teamcenter Visualization Vulnerabilities: Infinite Loop, Null Pointer Dereference, Integer Overflow to Buffer Overflow, Double Free, Access of Uninitialized Pointer 2. RISK EVALUATION Successful...

Path Traversal in scout-browser

Scout is a Variant Call Format VCF visualization interface. The Pypi package scout-browser is vulnerable to path traversal due to sendfile call in versions prior to 4.52...

GHSA-694V-63FQ-FMR4 Path Traversal in scout-browser

Scout is a Variant Call Format VCF visualization interface. The Pypi package scout-browser is vulnerable to path traversal due to sendfile call in versions prior to 4.52...

The vulnerability of the Kibana data visualization service is related to the disclosure of information, which allows an attacker to expose the protected information.

The vulnerability of the Kibana data visualization service is related to the exposure of information. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

Microsoft Power BI Spoofing Vulnerability

Microsoft Power BI is an interactive data visualization software from Microsoft USA that focuses on business intelligence. It is part of the Microsoft Power Platform. A spoofing vulnerability exists in Microsoft Power BI. An attacker can exploit this vulnerability to conduct spoofing attacks...

Unspecified Vulnerability in Siemens SIMATIC Energy Manager

SIMATIC Energy Manager visualizes process energy flows and consumption values in detail, assigns them to the relevant consumers or cost centers, and determines the reasons for changes. A security vulnerability exists in Siemens SIMATIC Energy Manager, which can be exploited by an attacker to...

Apache DolphinScheduler Denial of Service Vulnerability

Apache DolphinScheduler, a distributed DAG visualization-based workflow task scheduling system from the Apache Foundation, is a denial-of-service vulnerability in versions prior to Apache DolphinScheduler 2.0.5, which stems from a user registration interface that does not properly handle incoming...

[SECURITY] Fedora 36 Update: zabbix-5.0.21-1.fc36

Zabbix is software that monitors numerous parameters of a network and the health and integrity of servers. Zabbix uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. Zabbix offers...