CVE-2023-38530

Name of the Vulnerable Software and Affected Versions Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.171 Teamcenter Visualization versions prior to V14.1.0.11 Teamcenter Visualization versions prior to V14.2.0.6 Teamcenter Visualization versions prior to V14.3.0.3

Description The issue is related to a buffer read out of bounds in memory, which can be exploited by an attacker using specially crafted X T files. This could allow the execution of arbitrary code in the context of the current process. The affected applications contain a vulnerability while parsing these files, potentially leading to code execution.

Recommendations For Parasolid versions prior to V34.1.258, update to version V34.1.258 or later. For Parasolid versions prior to V35.0.254, update to version V35.0.254 or later. For Parasolid versions prior to V35.1.171, update to version V35.1.171 or later. For Teamcenter Visualization versions prior to V14.1.0.11, update to version V14.1.0.11 or later. For Teamcenter Visualization versions prior to V14.2.0.6, update to version V14.2.0.6 or later. For Teamcenter Visualization versions prior to V14.3.0.3, update to version V14.3.0.3 or later. As a temporary workaround, consider restricting the use of specially crafted X T files until a patch is available.