Parasolid Vulnerability Could Lead to Denial of Service Condition
CVE-2024-32637
3.3LOW
Key Information:
- Vendor
- Siemens
- Status
- Vendor
- CVE Published:
- 14 May 2024
Summary
A vulnerability has been identified in JT2Go (All versions < V2312.0005), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.10), Teamcenter Visualization V2312 (All versions < V2312.0005). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted X_T files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.
Affected Version(s)
JT2Go 0
Teamcenter Visualization V14.2 0
Teamcenter Visualization V14.3 0
References
CVSS V3.1
Score:
3.3
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved