Lucene search
China National Vulnerability DatabaseCNVD-2021-53354HistoryJul 14, 2021 - 12:00 a.m.
Siemens Jt2go and Siemens Teamcenter Visualization Buffer Over Read Vulnerability (CNVD-2021-53354)
2021-07-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
siemens
jt2go
teamcenter
visualization
buffer over-read
vulnerability
german
tiff_loader.dll
tiff files
information leak
EPSS
0.001
Percentile
36.4%
Siemens Jt2go and Siemens Teamcenter Visualization are both products of the German company Siemens. Siemens Jt2go is a JT file viewer. Siemens Teamcenter Visualization is a software that provides team collaboration capabilities for designing 2D and 3D scenes. A buffer over-read vulnerability exists in Siemens JT2Go versions prior to 13.2 and Teamcenter Visualization versions prior to 13.2. The vulnerability stems from a failure of the Tiff_loader.dll library to properly validate user-supplied data when parsing TIFF files, which can be exploited to leak information in the context of the current process .
Related
cvelist
cvelist
CVE-2021-34299
2021-07-13 11:03:16
nvd
nvd
CVE-2021-34299
2021-07-13 11:15:10
zdi
zdi
cve
cve
CVE-2021-34299
2021-07-13 11:15:10
prion
prion
Design/Logic Flaw
2021-07-13 11:15:00
ics
ics
Siemens JT2Go and Teamcenter Visualization
2021-07-13 12:00:00
nessus
nessus
Siemens JT2Go < 13.2 Multiple Vulnerabilities (SSA-483182)
2021-07-15 00:00:00