CVE-2024-32635
published 2024-05-14CVE-2024-32635: A vulnerability has been identified in JT2Go (All versions < V2312.0005), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization…
high7.3CVSS 4.0
AVLACHATNPRNUIPVCHVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A vulnerability has been identified in JT2Go (All versions < V2312.0005), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.10), Teamcenter Visualization V2312 (All versions < V2312.0005). The affected applications contain an out of bounds read past the unmapped memory region while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | jt2go | < V2312.0005 | V2312.0005 |
| siemens | jt2go | < 2312.0005 | 2312.0005 |
| siemens | parasolid | >= 35.0 < 35.1.256 | 35.1.256 |
| siemens | parasolid | >= 36.0 < 36.0.208 | 36.0.208 |
| siemens | parasolid | >= 36.1 < 36.1.173 | 36.1.173 |
| siemens | teamcenter_visualization | >= 14.2 < 14.2.0.12 | 14.2.0.12 |
| siemens | teamcenter_visualization | >= 14.3 < 14.3.0.10 | 14.3.0.10 |
| siemens | teamcenter_visualization | >= 2312.0 < 2312.0005 | 2312.0005 |
| siemens | teamcenter_visualization_v14.2 | < V14.2.0.12 | V14.2.0.12 |
| siemens | teamcenter_visualization_v14.3 | < V14.3.0.10 | V14.3.0.10 |
| siemens | teamcenter_visualization_v2312 | < V2312.0005 | V2312.0005 |