Vulnetix
Try Vulnetix Request Demo
CVE-2021-34332 PUBLISHED CVSS 5.5 MEDIUM

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing BMP files. A malformed input file could result in an infinite loop condition that leads to denial of service condition. An attacker could leverage this vulnerability to consume excessive resources. (CNVD-C-2021-79300)

EPSS 0.16% · 37.3th percentile

Risk Scores

CVSS v3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
0.16%
37.3th percentile

Affected Products

VendorProductVersions
SiemensTeamcenter VisualizationAll versions < V13.2
siemensteamcenter_visualization0
SiemensJT2GoAll versions < V13.2
siemensjt2go0

Timeline

References

Open in Interactive Console →