CVE-2024-41902Stack-based Buffer Overflow in Siemens Jt2go

CWE-121Stack-based Buffer OverflowCWE-787Out-of-bounds Write3 documents3 sources
Severity
7.3HIGHNVD
EPSS
0.1%
top 74.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Siemens Jt2go
Timeline
PublishedOct 8

Description

A vulnerability has been identified in JT2Go (All versions < V2406.0003). The affected application contains a stack-based buffer overflow vulnerability that could be triggered while parsing specially crafted PDF files. This could allow an attacker to execute code in the context of the current process.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5siemens/jt2go< V2406.0003
NVDsiemens/jt2go< 2406.0003

🔴Vulnerability Details

2
CVEList
CVE-2024-41902: A vulnerability has been identified in JT2Go (All versions < V24062024-10-08
GHSA
GHSA-vwf3-qcp6-vhcp: A vulnerability has been identified in JT2Go (All versions < V24062024-10-08
CVE-2024-41902 — Stack-based Buffer Overflow in Siemens | cvebase