CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34317

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_loader.dll library in affected applications lacks proper validation of user-supplied data when parsing PCX files. This could result in an out of bounds write past the fixed-length heap-based buffer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13402)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.1%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

Products affected by CVE-2021-34317

Siemens » Jt2go » Version: N/A

cpe:2.3:a:siemens:jt2go:-
Siemens » Jt2go » Version: 13.1.0

cpe:2.3:a:siemens:jt2go:13.1.0
Siemens » Jt2go » Version: 13.1.0.1

cpe:2.3:a:siemens:jt2go:13.1.0.1
Siemens » Jt2go » Version: 13.1.0.2

cpe:2.3:a:siemens:jt2go:13.1.0.2
Siemens » Jt2go » Version: 13.1.0.3

cpe:2.3:a:siemens:jt2go:13.1.0.3
Siemens » Teamcenter Visualization » Version: N/A

cpe:2.3:a:siemens:teamcenter_visualization:-
Siemens » Teamcenter Visualization » Version: 12.4.0

cpe:2.3:a:siemens:teamcenter_visualization:12.4.0
Siemens » Teamcenter Visualization » Version: 13.0.0

cpe:2.3:a:siemens:teamcenter_visualization:13.0.0
Siemens » Teamcenter Visualization » Version: 13.1.0

cpe:2.3:a:siemens:teamcenter_visualization:13.1.0
Siemens » Teamcenter Visualization » Version: 13.1.0.1

cpe:2.3:a:siemens:teamcenter_visualization:13.1.0.1
Siemens » Teamcenter Visualization » Version: 13.1.0.2

cpe:2.3:a:siemens:teamcenter_visualization:13.1.0.2
Siemens » Teamcenter Visualization » Version: 13.1.0.3

cpe:2.3:a:siemens:teamcenter_visualization:13.1.0.3
Siemens » Teamcenter Visualization » Version: 8.0.9085

cpe:2.3:a:siemens:teamcenter_visualization:8.0.9085

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34317

Products

Pricing

Contact Us