Lucene search
SiemensCVELIST:CVE-2021-44439HistoryDec 14, 2021 - 12:06 p.m.
CVE-2021-44439
2021-12-1412:06:59
CWE-125
siemens
www.cve.org
3
vulnerability
jt utilities
jttk
out of bounds read
allocated buffer
jt files
information leak
zdi-can-14908
A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All versions < V11.1.1.0). JTTK library in affected products is vulnerable to an out of bounds read past the end of an allocated buffer when parsing specially crafted JT files. An attacker could leverage this vulnerability to leak information in the context of the current process. (ZDI-CAN-14908)
CNA Affected
[
{
"product": "JT Utilities",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V13.1.1.0"
}
]
},
{
"product": "JTTK",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V11.1.1.0"
}
]
}
]Related
prion
prion
Out-of-bounds
2021-12-14 12:15:00
cnvd
cnvd
JT Utilities and JTTK File Parsing Vulnerability (CNVD-2021-101006)
2021-12-17 00:00:00
cve
cve
CVE-2021-44439
2021-12-14 12:15:11
nvd
nvd
CVE-2021-44439
2021-12-14 12:15:11
ics
ics
Siemens JT Utilities and JT Open Toolkit
2021-12-16 12:00:00