Lucene search
K

Siemens JT2Go BMP File Parsing Use-After-Free Remote Code Execution Vulnerability

🗓️ 19 Jul 2021 00:00:00Reported by xina1i at SecZoneType 
zdi
 zdi
🔗 www.zerodayinitiative.com👁 68 Views

Siemens JT2Go BMP File Parsing Use-After-Free Remote Code Execution Vulnerability. Allows remote attackers to execute arbitrary code, requiring user interaction to exploit through visiting a malicious page or opening a malicious file. Specifically, the flaw exists in the parsing of BMP files due to lack of validation, enabling an attacker to execute code in the current process

Related
Refs
ReporterTitlePublishedViews
Family
CNNVD
Siemens Jt2go资源管理错误漏洞
13 Jul 202100:00
cnnvd
CNVD
Siemens Jt2go and Siemens Teamcenter Visualization Remote Code Execution Vulnerability
14 Jul 202100:00
cnvd
CVE
CVE-2021-34301
13 Jul 202111:03
cve
Cvelist
CVE-2021-34301
13 Jul 202111:03
cvelist
EUVD
EUVD-2021-20962
7 Oct 202500:30
euvd
NVD
CVE-2021-34301
13 Jul 202111:15
nvd
OSV
CVE-2021-34301
13 Jul 202111:15
osv
Prion
Design/Logic Flaw
13 Jul 202111:15
prion
RedhatCVE
CVE-2021-34301
22 May 202521:32
redhatcve
Tenable Nessus
Siemens JT2Go < 13.2 Multiple Vulnerabilities (SSA-483182)
15 Jul 202100:00
nessus
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

19 Jul 2021 00:00Current
4.4Medium risk
Vulners AI Score4.4
CVSS 37.8
EPSS0.01574
68