Ptc: Security Vulnerabilities
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is reflected XSS in the SQUEAL search function.
CVSS Score
5.4
EPSS Score
0.003
Published
2018-10-01
Heap-based buffer overflow in the browser plugin for PTC Creo View allows remote attackers to execute arbitrary code via vectors involving setting a large buffer to an unspecified attribute.
CVSS Score
7.5
EPSS Score
0.034
Published
2015-03-09
Heap-based buffer overflow in the PTC IsoView ActiveX control allows remote attackers to execute arbitrary code via a crafted ViewPort property value.
CVSS Score
6.8
EPSS Score
0.04
Published
2014-12-08
The "Protect Worksheet" functionality in Mathsoft Mathcad 12 through 13.1, and PTC Mathcad 14, implements file access restrictions via a protection element in a gzipped XML file, which allows attackers to bypass these restrictions by removing this element.
CVSS Score
4.6
EPSS Score
0.001
Published
2007-10-18
Page 4