Vulnerability Details CVE-2021-38405
The Datalogics APDFL library used in affected products is vulnerable to memory corruption condition while parsing specially crafted PDF files. An attacker could leverage this vulnerability to execute code in the context of the current process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.7%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2021-38405
-
cpe:2.3:a:siemens:jt2go:-
-
cpe:2.3:a:siemens:jt2go:13.1.0
-
cpe:2.3:a:siemens:jt2go:13.1.0.1
-
cpe:2.3:a:siemens:jt2go:13.1.0.2
-
cpe:2.3:a:siemens:jt2go:13.1.0.3
-
cpe:2.3:a:siemens:jt2go:13.2.0
-
cpe:2.3:a:siemens:jt2go:13.2.0.1
-
cpe:2.3:a:siemens:jt2go:13.2.0.2
-
cpe:2.3:a:siemens:teamcenter_visualization:13.1.0
-
cpe:2.3:a:siemens:teamcenter_visualization:13.1.0.1
-
cpe:2.3:a:siemens:teamcenter_visualization:13.1.0.2
-
cpe:2.3:a:siemens:teamcenter_visualization:13.1.0.3
-
cpe:2.3:a:siemens:teamcenter_visualization:13.2.0
-
cpe:2.3:a:siemens:teamcenter_visualization:13.2.0.1
-
cpe:2.3:a:siemens:teamcenter_visualization:13.2.0.2
-
cpe:2.3:a:siemens:teamcenter_visualization:13.3.0