CVE-2022-2069
published 2022-10-20CVE-2022-2069: The APDFL.dll in Siemens JT2Go prior to V13.3.0.5 and Siemens Teamcenter Visualization prior to V14.0.0.2 contains an out of bounds write past the fixed-length…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
The APDFL.dll in Siemens JT2Go prior to V13.3.0.5 and Siemens Teamcenter Visualization prior to V14.0.0.2 contains an out of bounds write past the fixed-length heap-based buffer while parsing specially crafted PDF files. This could allow an attacker to execute code in the context of the current process.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | jt2go | < 13.3.0.5 | 13.3.0.5 |
| siemens | jt2go | >= unspecified < V13.3.0.5 | V13.3.0.5 |
| siemens | teamcenter_visualization | >= 13.3.0 < 13.3.0.5 | 13.3.0.5 |
| siemens | teamcenter_visualization | >= 14.0 < 14.0.0.2 | 14.0.0.2 |
| siemens | teamcenter_visualization_v13.3 | >= unspecified < V13.3.0.5 | V13.3.0.5 |
| siemens | teamcenter_visualization_v14.0 | >= unspecified < V14.0.0.2 | V14.0.0.2 |