CVE-2023-33122

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jun 13, 2023
Updated: Jun 22, 2023
CWE ID 125

Summary

CVE-2023-33122 is a newly-discovered vulnerability affecting multiple versions of JT2Go and Teamcenter Visualization applications. The issue stems from an out-of-bounds read vulnerability in the affected software's handling of CGM files. This weakness allows an attacker to read beyond the end of the allocated buffer, potentially resulting in the disclosure of sensitive information. The impacted applications include Teamcenter Visualization V13.2, V13.3, V14.0, V14.1, and V14.2, all versions preceding V14.2.0.3. Users are advised to update their software to the latest secure versions to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Siemens Teamcenter Visualization
  • Siemens JT2GO
  • Teamcenter

Affected Vendors

  • Siemens AG