CVE-2023-51744

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 9, 2024
Updated: Jan 11, 2024
CWE ID 476

Summary

CVE-2023-51744 is a newly discovered vulnerability that affects multiple versions of JT2Go and various Teamcenter Visualization applications, including those before V13.3.0.13, V14.1.0.12, V14.2.0.9, and V14.3.0.6. This issue involves a null pointer dereference vulnerability, which arises when these applications parse maliciously crafted CGM files. An attacker can exploit this weakness to cause a crash of the application, leading to a denial of service condition.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Siemens Teamcenter Visualization
  • Siemens JT2GO
  • Teamcenter

Affected Vendors

  • Siemens AG