Описание
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization (All versions < V13.2.0.5). The Tiff_Loader.dll is vulnerable to use of uninitialized memory while parsing user supplied TIFF files. This could allow an attacker to cause a denial-of-service condition.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 13.2.0.5 (исключая)Версия до 13.2.0.5 (исключая)
Одно из
cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00158
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-457
CWE-908
Связанные уязвимости
CVSS3: 5.5
github
около 4 лет назад
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization (All versions < V13.2.0.5). The Tiff_Loader.dll is vulnerable to use of uninitialized memory while parsing user supplied TIFF files. This could allow an attacker to cause a denial-of-service condition.
EPSS
Процентиль: 37%
0.00158
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-457
CWE-908