VDB

CVE-2021-33715

CVE-2021-33715 PUBLISHED CVSS 5.5 MEDIUM

A vulnerability has been identified in JT Utilities (All versions < V13.0.2.0). When parsing specially crafted JT files, a race condition could cause an object to be released before being operated on, leading to NULL pointer deference condition and causing the application to crash. An attacker could leverage this vulnerability to cause a Denial-of-Service condition in the application.

EPSS 0.05% · 16.9th percentile

Risk Scores

CVSS v3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
0.05%
16.9th percentile

Affected Products

VendorProductVersions
siemensjt_utilities0
SiemensJT Utilities*

Timeline

  • Jul 13, 2021 CVE Published
  • Jul 14, 2021 EPSS Score
  • Sep 12, 2021 EPSS Score
  • Nov 10, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Jan 9, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 8, 2022 EPSS Score
  • Jul 7, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Nov 4, 2022 EPSS Score
  • Jan 2, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›