CVE-2021-44003
First published: Tue Dec 14 2021(Updated: )
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization (All versions < V13.2.0.5). The Tiff_Loader.dll is vulnerable to use of uninitialized memory while parsing user supplied TIFF files. This could allow an attacker to cause a denial-of-service condition.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens JT2Go | <13.2.0.5 | |
| Siemens Teamcenter Visualization | <13.2.0.5 | |
| Siemens JT2Go | <13.2.0.5 | 13.2.0.5 |
| Siemens Teamcenter Visualization | <13.2.0.5 | 13.2.0.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID is CVE-2021-44003.
Which software versions are affected by this vulnerability?
All versions of JT2Go and Teamcenter Visualization prior to V13.2.0.5 are affected.
What is the impact of this vulnerability?
This vulnerability could allow an attacker to cause a denial-of-service condition.
What is the severity of CVE-2021-44003?
The severity of this vulnerability is medium, with a CVSS score of 5.5.
How can I fix this vulnerability?
Update your JT2Go and Teamcenter Visualization software to version V13.2.0.5 or newer.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/remedy
- agent/severity
- agent/references
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- vendor/siemens
- canonical/siemens jt2go
- canonical/siemens teamcenter visualization