CVE-2021-44000
Published: Feb 9, 2022
Modified: Aug 4, 2024
Description
A vulnerability has been identified in JT2Go (All versions < V13.2.0.7), Solid Edge SE2021 (All versions < SE2021MP9), Solid Edge SE2022 (All versions < SE2022MP1), Teamcenter Visualization V13.1 (All versions < V13.1.0.9), Teamcenter Visualization V13.2 (All versions < V13.2.0.7), Teamcenter Visualization V13.3 (All versions < V13.3.0.1). The plmxmlAdapterSE70.dll contains an out of bounds write past the fixed-length heap-based buffer while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-15053)
| Vendor | Product | Versions |
|---|---|---|
Siemens | JT2Go | affected All versions < V13.2.0.7 |
Siemens | Solid Edge SE2021 | affected All versions < SE2021MP9 |
Siemens | Solid Edge SE2022 | affected All versions < SE2022MP1 |
Siemens | Teamcenter Visualization V13.1 | affected All versions < V13.1.0.9 |
Siemens | Teamcenter Visualization V13.2 | affected All versions < V13.2.0.7 |
Siemens | Teamcenter Visualization V13.3 | affected All versions < V13.3.0.1 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now