SSA-626178 — Vulnetix

SSA-626178 PUBLISHED CVSS 7.800000190734863 HIGH

Siemens JT2Go is affected by a stack-based buffer overflow vulnerability that could be triggered when the application reads files in PDF format. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to arbitrary code execution. Siemens has released a new version for JT2Go and recommends to update to the latest version.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
	JT2Go

Timeline

CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-626178.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-626178.json advisory

Open in Interactive Console →