VDB

CVE-2021-33717

CVE-2021-33717 PUBLISHED CVSS 5.5 MEDIUM

A vulnerability has been identified in JT2Go (All versions < V13.2.0.1), Teamcenter Visualization (All versions < V13.2.0.1). When parsing specially crafted CGM Files, a NULL pointer deference condition could cause the application to crash. The application must be restarted to restore the service. An attacker could leverage this vulnerability to cause a Denial-of-Service condition in the application.

EPSS 0.16% · 37.1th percentile

Risk Scores

CVSS v3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
0.16%
37.1th percentile

Affected Products

VendorProductVersions
SiemensJT2Go*
SiemensTeamcenter VisualizationAll versions < V13.2.0.1
siemensteamcenter_visualization0
siemensjt2go0

Timeline

  • Apr 13, 2021 CVE Published
  • Aug 11, 2021 EPSS Score
  • Oct 9, 2021 EPSS Score
  • Dec 6, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 3, 2022 EPSS Score
  • Apr 2, 2022 EPSS Score
  • May 31, 2022 EPSS Score
  • Jul 30, 2022 EPSS Score
  • Sep 26, 2022 EPSS Score
  • Nov 24, 2022 EPSS Score
  • Jan 22, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›