← volver
CVE-2023-38532

CVE-2023-38532

CVSS 4.8 MEDIUMEPSS 0.2%CWE-770
A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected application contains a stack exhaustion vulnerability while parsing a specially crafted X_T file. This could allow an attacker to cause denial of service condition.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Productos afectados
Siemens · Parasolid V34.1Siemens · Parasolid V35.0Siemens · Parasolid V35.1Siemens · Teamcenter Visualization V14.1Siemens · Teamcenter Visualization V14.2Siemens · Teamcenter Visualization V14.3

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://cert-portal.siemens.com/productcert/html/ssa-407785.htmlhttps://cert-portal.siemens.com/productcert/pdf/ssa-407785.pdf