CVE-2023-7066

CWE-125Out-of-bounds Read3 documents3 sources
Severity
7.3HIGH
EPSS
0.2%
top 53.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Siemens Jt2goSiemens Teamcenter Visualization
Timeline
PublishedAug 12
Latest updateAug 13

Description

The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PDF files. This could allow an attacker to execute code in the context of the current process.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5siemens/jt2go< V14.3.0.8
CVEListV5siemens/teamcenter_visualization< V14.1.0.14+3

🔴Vulnerability Details

2
GHSA
GHSA-qg3q-h7pr-4qj6: The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PDF files2024-08-13
CVEList
Siemens Teamcenter Visualization and JT2Go Out-of-bounds Read2024-08-12
CVE-2023-7066 (HIGH CVSS 7.3) | The affected applications contain a | cvebase.io