Jin Huang

**Name of the Vulnerable Software and Affected Versions** Teamcenter Visualization versions prior to V14.3.0.13 Teamcenter Visualization versions prior to V2312.0009 Teamcenter Visualization versions prior to V2406.0007 Teamcenter Visualization versions prior to V2412.0002 Tecnomatix Plant Simulation versions prior to V2302.0021 Tecnomatix Plant Simulation versions prior to V2404.0010 **Description** A vulnerability has been identified in the affected applications, which contain an out of bounds write vulnerability when parsing a specially crafted WRL file. This could allow an attacker to execute code in the context of the current process. The issue is related to improper restriction of operations within the bounds of a memory buffer. **Recommendations** For Teamcenter Visualization versions prior to V14.3.0.13, update to version V14.3.0.13 or later. For Teamcenter Visualization versions prior to V2312.0009, update to version V2312.0009 or later. For Teamcenter Visualization versions prior to V2406.0007, update to version V2406.0007 or later. For Teamcenter Visualization versions prior to V2412.0002, update to version V2412.0002 or later. For Tecnomatix Plant Simulation versions prior to V2302.0021, update to version V2302.0021 or later. For Tecnomatix Plant Simulation versions prior to V2404.0010, update to version V2404.0010 or later.

**Name of the Vulnerable Software and Affected Versions** Teamcenter Visualization versions prior to V14.3.0.13 Teamcenter Visualization versions prior to V2312.0009 Teamcenter Visualization versions prior to V2406.0007 Teamcenter Visualization versions prior to V2412.0002 Tecnomatix Plant Simulation versions prior to V2302.0021 Tecnomatix Plant Simulation versions prior to V2404.0010 **Description** The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. **Recommendations** For Teamcenter Visualization versions prior to V14.3.0.13, update to version V14.3.0.13 or later. For Teamcenter Visualization versions prior to V2312.0009, update to version V2312.0009 or later. For Teamcenter Visualization versions prior to V2406.0007, update to version V2406.0007 or later. For Teamcenter Visualization versions prior to V2412.0002, update to version V2412.0002 or later. For Tecnomatix Plant Simulation versions prior to V2302.0021, update to version V2302.0021 or later. For Tecnomatix Plant Simulation versions prior to V2404.0010, update to version V2404.0010 or later.

Name of the Vulnerable Software and Affected Versions: Teamcenter Visualization versions prior to V14.2.0.14 Teamcenter Visualization versions prior to V14.3.0.12 Teamcenter Visualization versions prior to V2312.0008 Tecnomatix Plant Simulation versions prior to V2302.0016 Tecnomatix Plant Simulation versions prior to V2404.0005 Description: The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. Recommendations: For Teamcenter Visualization versions prior to V14.2.0.14, update to version V14.2.0.14 or later. For Teamcenter Visualization versions prior to V14.3.0.12, update to version V14.3.0.12 or later. For Teamcenter Visualization versions prior to V2312.0008, update to version V2312.0008 or later. For Tecnomatix Plant Simulation versions prior to V2302.0016, update to version V2302.0016 or later. For Tecnomatix Plant Simulation versions prior to V2404.0005, update to version V2404.0005 or later.

**Name of the Vulnerable Software and Affected Versions** JT2Go versions prior to V2312.0005 Teamcenter Visualization V14.2 versions prior to V14.2.0.12 Teamcenter Visualization V14.3 versions prior to V14.3.0.10 Teamcenter Visualization V2312 versions prior to V2312.0005 **Description** A vulnerability has been identified that allows an attacker to execute code in the context of the current process by exploiting an out of bounds read past the end of an allocated structure while parsing specially crafted X T files. This issue is related to a buffer read overflow in memory, which can be triggered by specially crafted X T files, potentially allowing an attacker to execute arbitrary code. **Recommendations** For JT2Go versions prior to V2312.0005, update to version V2312.0005 or later. For Teamcenter Visualization V14.2 versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization V14.3 versions prior to V14.3.0.10, update to version V14.3.0.10 or later. For Teamcenter Visualization V2312 versions prior to V2312.0005, update to version V2312.0005 or later.

**Name of the Vulnerable Software and Affected Versions** JT2Go versions prior to V2312.0005 Teamcenter Visualization V14.2 versions prior to V14.2.0.12 Teamcenter Visualization V14.3 versions prior to V14.3.0.10 Teamcenter Visualization V2312 versions prior to V2312.0005 Parasolid (affected versions not specified) **Description** The issue is related to an out of bounds read in memory, which can occur when parsing specially crafted X T files. This could allow an attacker to execute arbitrary code in the context of the current process. The vulnerability can be exploited by using specially created X T files. **Recommendations** For JT2Go versions prior to V2312.0005, update to version V2312.0005 or later. For Teamcenter Visualization V14.2 versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization V14.3 versions prior to V14.3.0.10, update to version V14.3.0.10 or later. For Teamcenter Visualization V2312 versions prior to V2312.0005, update to version V2312.0005 or later. For Parasolid, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Parasolid (affected versions not specified) JT2Go versions prior to V2312.0005 Teamcenter Visualization V14.2 versions prior to V14.2.0.12 Teamcenter Visualization V14.3 versions prior to V14.3.0.10 Teamcenter Visualization V2312 versions prior to V2312.0005 **Description** The issue is related to a null pointer dereference vulnerability. This vulnerability can be exploited by an attacker using specially crafted X T files, potentially leading to a denial of service condition by crashing the application. **Recommendations** For JT2Go versions prior to V2312.0005, update to version V2312.0005 or later. For Teamcenter Visualization V14.2 versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization V14.3 versions prior to V14.3.0.10, update to version V14.3.0.10 or later. For Teamcenter Visualization V2312 versions prior to V2312.0005, update to version V2312.0005 or later. As a temporary workaround, consider avoiding the use of specially crafted X T files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Parasolid V35.1 versions prior to V35.1.254 Parasolid V36.0 versions prior to V36.0.207 Parasolid V36.1 versions prior to V36.1.147 JT2Go versions prior to V2312.0004 Teamcenter Visualization V14.2 versions prior to V14.2.0.12 Teamcenter Visualization V14.3 versions prior to V14.3.0.9 Teamcenter Visualization V2312 versions prior to V2312.0004 **Description** The issue is related to uncontrolled resource allocation. Exploitation of this issue may allow an attacker to cause a denial of service condition using specially crafted X T files. The affected application contains a stack exhaustion vulnerability while parsing these files. **Recommendations** For Parasolid V35.1 versions prior to V35.1.254, update to version V35.1.254 or later. For Parasolid V36.0 versions prior to V36.0.207, update to version V36.0.207 or later. For Parasolid V36.1 versions prior to V36.1.147, update to version V36.1.147 or later. For JT2Go versions prior to V2312.0004, update to version V2312.0004 or later. For Teamcenter Visualization V14.2 versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization V14.3 versions prior to V14.3.0.9, update to version V14.3.0.9 or later. For Teamcenter Visualization V2312 versions prior to V2312.0004, update to version V2312.0004 or later. As a temporary workaround, consider restricting the use of specially crafted X T files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Parasolid versions prior to V35.1.254 Parasolid versions prior to V36.0.207 Parasolid versions prior to V36.1.147 JT2Go versions prior to V2312.0004 Teamcenter Visualization versions prior to V14.2.0.12 Teamcenter Visualization versions prior to V14.3.0.9 Teamcenter Visualization versions prior to V2312.0004 **Description** The issue is related to a null pointer dereference vulnerability. This vulnerability can be exploited by an attacker using specially crafted X T files, potentially leading to a denial of service condition by crashing the application. **Recommendations** For Parasolid versions prior to V35.1.254, update to version V35.1.254 or later. For Parasolid versions prior to V36.0.207, update to version V36.0.207 or later. For Parasolid versions prior to V36.1.147, update to version V36.1.147 or later. For JT2Go versions prior to V2312.0004, update to version V2312.0004 or later. For Teamcenter Visualization versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization versions prior to V14.3.0.9, update to version V14.3.0.9 or later. For Teamcenter Visualization versions prior to V2312.0004, update to version V2312.0004 or later.

**Name of the Vulnerable Software and Affected Versions** JT2Go versions prior to V2312.0004 Parasolid V35.1 versions prior to V35.1.254 Parasolid V36.0 versions prior to V36.0.207 Parasolid V36.1 versions prior to V36.1.147 Teamcenter Visualization V14.2 versions prior to V14.2.0.12 Teamcenter Visualization V14.3 versions prior to V14.3.0.9 Teamcenter Visualization V2312 versions prior to V2312.0004 **Description** The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X T files. This could allow an attacker to execute code in the context of the current process. The issue is related to a buffer read overflow in memory, which can be exploited by an attacker using specially created X T files to execute arbitrary code. **Recommendations** For JT2Go versions prior to V2312.0004, update to version V2312.0004 or later. For Parasolid V35.1 versions prior to V35.1.254, update to version V35.1.254 or later. For Parasolid V36.0 versions prior to V36.0.207, update to version V36.0.207 or later. For Parasolid V36.1 versions prior to V36.1.147, update to version V36.1.147 or later. For Teamcenter Visualization V14.2 versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization V14.3 versions prior to V14.3.0.9, update to version V14.3.0.9 or later. For Teamcenter Visualization V2312 versions prior to V2312.0004, update to version V2312.0004 or later. As a temporary workaround, consider restricting the use of X T files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.171 Teamcenter Visualization versions prior to V14.1.0.11 Teamcenter Visualization versions prior to V14.2.0.6 Teamcenter Visualization versions prior to V14.3.0.3 **Description** The issue is related to a buffer read out of bounds in memory, which can be exploited by an attacker using specially crafted X T files. This could allow the execution of arbitrary code in the context of the current process. The affected applications contain a vulnerability while parsing these files, potentially leading to code execution. **Recommendations** For Parasolid versions prior to V34.1.258, update to version V34.1.258 or later. For Parasolid versions prior to V35.0.254, update to version V35.0.254 or later. For Parasolid versions prior to V35.1.171, update to version V35.1.171 or later. For Teamcenter Visualization versions prior to V14.1.0.11, update to version V14.1.0.11 or later. For Teamcenter Visualization versions prior to V14.2.0.6, update to version V14.2.0.6 or later. For Teamcenter Visualization versions prior to V14.3.0.3, update to version V14.3.0.3 or later. As a temporary workaround, consider restricting the use of specially crafted X T files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.171 Teamcenter Visualization versions prior to V14.1.0.11 Teamcenter Visualization versions prior to V14.2.0.6 Teamcenter Visualization versions prior to V14.3.0.3 **Description** A stack exhaustion vulnerability has been identified in the affected application while parsing a specially crafted X T file. This could allow an attacker to cause a denial of service condition. The vulnerability is related to unlimited resource allocation, which can be exploited by a remote attacker to cause a denial of service. **Recommendations** For Parasolid versions prior to V34.1.258, update to version V34.1.258 or later. For Parasolid versions prior to V35.0.254, update to version V35.0.254 or later. For Parasolid versions prior to V35.1.171, update to version V35.1.171 or later. For Teamcenter Visualization versions prior to V14.1.0.11, update to version V14.1.0.11 or later. For Teamcenter Visualization versions prior to V14.2.0.6, update to version V14.2.0.6 or later. For Teamcenter Visualization versions prior to V14.3.0.3, update to version V14.3.0.3 or later.

**Name of the Vulnerable Software and Affected Versions** Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.171 Teamcenter Visualization versions prior to V14.1.0.11 Teamcenter Visualization versions prior to V14.2.0.6 Teamcenter Visualization versions prior to V14.3.0.3 **Description** The issue is related to a null pointer dereference while parsing specially crafted X T files. This could allow an attacker to execute code in the context of the current process. The affected applications are Parasolid and Teamcenter Visualization. **Recommendations** For Parasolid versions prior to V34.1.258, update to version V34.1.258 or later. For Parasolid versions prior to V35.0.254, update to version V35.0.254 or later. For Parasolid versions prior to V35.1.171, update to version V35.1.171 or later. For Teamcenter Visualization versions prior to V14.1.0.11, update to version V14.1.0.11 or later. For Teamcenter Visualization versions prior to V14.2.0.6, update to version V14.2.0.6 or later. For Teamcenter Visualization versions prior to V14.3.0.3, update to version V14.3.0.3 or later. As a temporary workaround, consider restricting the parsing of X T files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.184 Teamcenter Visualization versions prior to V14.2.0.12 Teamcenter Visualization versions prior to V14.3.0.9 Teamcenter Visualization versions prior to V2312.0004 **Description** The issue is related to an out of bounds read past the end of an allocated structure while parsing specially crafted X T files. This could allow an attacker to execute code in the context of the current process. The vulnerability is associated with a buffer read beyond the memory boundary, which can be exploited using specially created files. **Recommendations** For Parasolid versions prior to V34.1.258, update to version V34.1.258 or later. For Parasolid versions prior to V35.0.254, update to version V35.0.254 or later. For Parasolid versions prior to V35.1.184, update to version V35.1.184 or later. For Teamcenter Visualization versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization versions prior to V14.3.0.9, update to version V14.3.0.9 or later. For Teamcenter Visualization versions prior to V2312.0004, update to version V2312.0004 or later.

**Name of the Vulnerable Software and Affected Versions** Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.184 Teamcenter Visualization version V14.1 Teamcenter Visualization versions prior to V14.2.0.12 Teamcenter Visualization versions prior to V14.3.0.9 Teamcenter Visualization versions prior to V2312.0004 **Description** The issue is related to an out of bounds read past the end of an allocated structure while parsing specially crafted X T files. This could allow an attacker to execute code in the context of the current process. The vulnerability is associated with a buffer read beyond the memory buffer boundaries, which can be exploited by an attacker using a specially crafted X T file to execute arbitrary code. **Recommendations** For Parasolid versions prior to V34.1.258, update to version V34.1.258 or later. For Parasolid versions prior to V35.0.254, update to version V35.0.254 or later. For Parasolid versions prior to V35.1.184, update to version V35.1.184 or later. For Teamcenter Visualization version V14.1, consider upgrading to a later version with the fix. For Teamcenter Visualization versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization versions prior to V14.3.0.9, update to version V14.3.0.9 or later. For Teamcenter Visualization versions prior to V2312.0004, update to version V2312.0004 or later. As a temporary workaround, consider restricting the use of specially crafted X T files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** The Email Artillery (MASS EMAIL) WordPress plugin versions 4.1 and earlier **Description** The issue allows arbitrary files to be uploaded due to improper checking of uploaded files from the Import Emails feature. Additionally, the plugin lacks a CSRF check, making it exploitable via a CSRF attack. However, the presence of a .htaccess file, which denies access to everything in the folder where the file is uploaded, limits the accessibility of the malicious uploaded file to web servers like Nginx/IIS. **Recommendations** For The Email Artillery (MASS EMAIL) WordPress plugin versions 4.1 and earlier: As a temporary workaround, consider disabling the Import Emails feature until a patch is available. Restrict access to the folder where files are uploaded to minimize the risk of exploitation. Avoid using the plugin on web servers such as Nginx/IIS until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fileviewer WordPress plugin versions through 2.2 **Description** The issue concerns the lack of CSRF checks in the Fileviewer WordPress plugin, allowing attackers to perform actions such as uploading and deleting files on behalf of a logged-in administrator via a CSRF attack. This could lead to arbitrary file uploads and deletions. **Recommendations** For Fileviewer WordPress plugin versions through 2.2, consider disabling file upload and delete functionality until a patch is available to add CSRF checks. Restrict access to file management features to minimize the risk of exploitation. Avoid using the plugin for sensitive file operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** College publisher Import WordPress plugin versions 0.1 and earlier **Description** The issue allows high privilege users to upload arbitrary files, such as PHP, due to the lack of checks on uploaded CSV files, leading to remote code execution (RCE). Additionally, the absence of a CSRF check makes the issue exploitable via a CSRF attack. **Recommendations** For College publisher Import WordPress plugin versions 0.1 and earlier, consider disabling the file upload functionality until a patch is available. Restrict access to the plugin's import feature to minimize the risk of exploitation. Avoid using the plugin for importing CSV files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Event Banner WordPress plugin versions prior to 1.4 **Description** The issue is related to the lack of verification for uploaded image files, allowing admin accounts to upload arbitrary files, such as .exe or .php, leading to remote code execution (RCE). The absence of a CSRF check also makes the issue exploitable via such a vector. Additionally, the lack of authorization checks could potentially allow for local file inclusion (LFI) attacks, although this would require WordPress to be loaded. **Recommendations** For Event Banner WordPress plugin versions prior to 1.4, update to version 1.4 or later to resolve the issue. As a temporary workaround, consider disabling file upload functionality in the plugin until a patch is available. Restrict access to the plugin's upload feature to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Classyfrieds WordPress plugin versions prior to 3.8 **Description** The issue is related to unrestricted file uploads of dangerous types. Exploitation of this issue may allow a remote attacker to upload and execute arbitrary files. Specifically, the plugin does not properly check uploaded files when an authenticated user adds a listing, only verifying the content-type in the request. This allows any authenticated user to upload arbitrary PHP files via the Add Listing feature, leading to remote code execution. **Recommendations** For Classyfrieds WordPress plugin versions prior to 3.8, update to a version that properly checks and restricts file uploads to prevent arbitrary file execution. As a temporary workaround, consider disabling the file upload feature in the Add Listing section of the plugin until a secure update is available. Restrict access to the plugin's file upload functionality to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: N5 Upload Form WordPress plugin versions 1.0 and earlier Description: The issue allows for arbitrary file upload in pages where a form from the plugin is embedded, enabling any file to be uploaded. The filename is generated using `md5(uniqid(rand()))`, making it difficult to guess. However, if the server is misconfigured with directory listing enabled, accessing the uploaded file becomes straightforward. Recommendations: For N5 Upload Form WordPress plugin versions 1.0 and earlier, update to a version that addresses the arbitrary file upload issue. As a temporary workaround, consider disabling the file upload functionality in the plugin until a patch is available. Restrict access to the directory where uploaded files are stored to minimize the risk of exploitation.