A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-20825)
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| siemens | jt2go | 14.3.0.1 | - |
| siemens | teamcenter_visualization | 13.3.0 - 13.4.0.12 |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7
Affected Products
4
References
siemens / jt2go
| - |
| siemens | teamcenter_visualization | 14.0 - 14.1.0.11 | - |
| siemens | teamcenter_visualization | 14.2 - 14.2.0.6 | - |
| siemens | teamcenter_visualization | 14.3 - 14.3.0.1 | - |
| siemens | tecnomatix_plant_simulation | 2201.0 - 2201.0010 | - |
| siemens | tecnomatix_plant_simulation | 2302.0 - 2302.0004 | - |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability
Impact