CVE-2023-30796
First published: Tue Aug 08 2023(Updated: )
A vulnerability has been identified in JT Open (All versions < V11.4), JT Utilities (All versions < V13.4). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in the context of the current process.
Credit: productcert@siemens.com productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Jt Open Toolkit | <11.4 | |
| Siemens Jt Utilities | <13.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-30796.
What is the severity of CVE-2023-30796?
The severity of CVE-2023-30796 is high with a CVSS score of 7.8.
Which software versions are affected by CVE-2023-30796?
JT Open versions earlier than V11.4 and JT Utilities versions earlier than V13.4 are affected by CVE-2023-30796.
How does CVE-2023-30796 affect Siemens JT Open Toolkit?
Siemens JT Open Toolkit versions earlier than V11.4 are affected by CVE-2023-30796.
How does CVE-2023-30796 affect Siemens JT Utilities?
Siemens JT Utilities versions earlier than V13.4 are affected by CVE-2023-30796.
- collector/nvd-api
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/event
- agent/references
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/siemens
- canonical/siemens jt open toolkit
- canonical/siemens jt utilities