This could allow an attacker to execute code in the context of the current process.ĬVE-2023-1709 has been assigned to this vulnerability. The APDFL.dll contains a memory corruption vulnerability while parsing specially crafted PDF files. Teamcenter Visualization V14.2: all versions prior to V14.2.0.2ģ.2.1 STACK-BASED BUFFER OVERFLOW CWE-121.Teamcenter Visualization V14.1: all versions prior to V14.1.0.7.Teamcenter Visualization V14.0: all versions prior to V14.0.0.5.Teamcenter Visualization V13.3: all versions prior to V13.3.0.9.Teamcenter Visualization V13.2: all versions prior to V13.2.0.13.The following versions of Teamcenter Visualization and JT2Go are affected: Siemens reports this vulnerability
Successful exploitation of this vulnerability could lead the application to crash or potentially lead to arbitrary code execution. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory.
