Lucene search
China National Vulnerability DatabaseCNVD-2021-53353HistoryJul 14, 2021 - 12:00 a.m.
Siemens Jt2go and Siemens Teamcenter Visualization Remote Code Execution Vulnerability (CNVD-2021-53353)
2021-07-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
siemens
remote code execution
jt files
team collaboration
vulnerability
EPSS
0.002
Percentile
64.9%
Siemens Jt2go and Siemens Teamcenter Visualization are both products of the German company Siemens. Siemens Jt2go is a JT file viewer. Siemens Teamcenter Visualization is a software that provides team collaboration capabilities for designing 2D and 3D scenes. A remote code execution vulnerability exists in Siemens JT2Go versions prior to 13.2 and Teamcenter Visualization versions prior to 13.2. The vulnerability stems from the failure of the BMP_Loader.dll library to properly validate user-supplied data before performing further release operations on objects when parsing BMP files, and can be exploited by attackers to The vulnerability can be exploited to execute code in the context of the current process.
Related
prion
prion
Code injection
2021-07-13 11:15:00
cvelist
cvelist
CVE-2021-34298
2021-07-13 11:03:15
nvd
nvd
CVE-2021-34298
2021-07-13 11:15:10
zdi
zdi
cve
cve
CVE-2021-34298
2021-07-13 11:15:10
nessus
nessus
Siemens JT2Go < 13.2 Multiple Vulnerabilities (SSA-483182)
2021-07-15 00:00:00
ics
ics
Siemens JT2Go and Teamcenter Visualization
2021-07-13 12:00:00