Null Pointer Dereference in Siemens Applications
CVE-2024-37996
4.8MEDIUM
Key Information:
- Vendor
Siemens
- Vendor
- CVE Published:
- 9 July 2024
What is CVE-2024-37996?
A critical vulnerability exists within various Siemens applications, including JT Open, JT2Go, and Teamcenter Visualization, which are susceptible to null pointer dereference. This issue arises when the applications process specially crafted XML files. An attacker could exploit this weakness to trigger application crashes, ultimately leading to a denial of service. It is imperative for users to update to the latest versions to mitigate potential risks associated with this vulnerability.
Affected Version(s)
JT Open 0
JT2Go 0
PLM XML SDK 0