Описание
A vulnerability has been identified in JT Open (All versions < V11.2.3.0), JT Utilities (All versions < V13.2.3.0). The affected application contains a memory corruption vulnerability while parsing specially crafted JT files. This could allow an attacker to execute code in the context of the current process.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 11.2.3.0 (исключая)Версия до 11.2.3.0 (исключая)
Одно из
cpe:2.3:a:siemens:jt_open_toolkit:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:jt_utilities:*:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00114
Низкий
7.8 High
CVSS3
Дефекты
CWE-119
CWE-787
Связанные уязвимости
CVSS3: 7.8
github
почти 3 года назад
A vulnerability has been identified in JT Open (All versions < V11.2.3.0), JT Utilities (All versions < V13.2.3.0). The affected application contains a memory corruption vulnerability while parsing specially crafted JT files. This could allow an attacker to execute code in the context of the current process.
EPSS
Процентиль: 30%
0.00114
Низкий
7.8 High
CVSS3
Дефекты
CWE-119
CWE-787