CVE-2023-33124

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jun 13, 2023

Updated: Jun 21, 2023

CWE ID 119

CWE ID 787

Summary

CVE-2023-33124 is a memory corruption vulnerability that affects multiple versions of JT2Go and Teamcenter Visualization applications, including those below V14.2.0.3, V13.2.0.13, V13.3.0.10, V14.0.0.6, and V14.1.0.8. This issue arises when these applications parse specially crafted CGM files, leading to unintended memory manipulation. An attacker can exploit this vulnerability to execute arbitrary code in the context of the current process.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens Teamcenter Visualization
Siemens JT2GO
Teamcenter

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rn2AgB
https://www.cve.org/CVERecord?id=CVE-2023-33124
https://nvd.nist.gov/vuln/detail/CVE-2023-33124

Back to Vulnerability Database