CVE-2023-38527Out-of-bounds Read in Siemens Parasolid V34.1

CWE-125Out-of-bounds Read3 documents3 sources
Severity
7.3HIGHNVD
EPSS
0.1%
top 73.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Siemens Parasolid V34.1Siemens Parasolid V35.0Siemens Teamcenter Visualization V14.1+5 more
Timeline
PublishedAug 8

Description

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Teamcenter Visualization V14.1 (All versions), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.9), Teamcenter Visualization V2312 (All versions < V2312.0004). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X_T files. This coul

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages8 packages

NVDsiemens/teamcenter_visualization14.114.1.0.11+2

Patches

Patch: cert-portal.siemens.comPatch: cert-portal.siemens.com

🔴Vulnerability Details

2
GHSA
GHSA-c48j-w2fx-98qq: A vulnerability has been identified in Parasolid V342023-08-08
CVEList
CVE-2023-38527: A vulnerability has been identified in Parasolid V342023-08-08
CVE-2023-38527 — Out-of-bounds Read in Siemens | cvebase