CVE-2020-26990

Name of the Vulnerable Software and Affected Versions: JT2Go versions prior to 13.1.0.1 Teamcenter Visualization versions prior to 13.1.0.1

Description: A vulnerability has been identified in the affected applications, where they lack proper validation of user-supplied data when parsing ASM files. This can trigger a type confusion condition, allowing an attacker to execute code in the context of the current process.

Recommendations: For JT2Go versions prior to 13.1.0.1, update to version 13.1.0.1 or later. For Teamcenter Visualization versions prior to 13.1.0.1, update to version 13.1.0.1 or later. As a temporary workaround, consider restricting the use of ASM files in the affected applications until a patch is available.