← back
CVE-2023-7066

Siemens Teamcenter Visualization and JT2Go Out-of-bounds Read

CVSS 7.3 HIGHEPSS 0.2%CWE-125
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.3EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
12 Aug 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PDF files. This could allow an attacker to execute code in the context of the current process.
CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N