CVE-2022-3161

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions JT2Go (affected versions not specified) Teamcenter Visualization (affected versions not specified)

Description The issue is related to a memory corruption vulnerability in the APDFL.dll library, which occurs when parsing specially crafted PDF files. This could allow an attacker to execute code in the context of the current process.

Recommendations For JT2Go, consider disabling the use of the APDFL.dll library until a patch is available. For Teamcenter Visualization, restrict access to the APDFL.dll library to minimize the risk of exploitation. Avoid using the APDFL.dll library for parsing PDF files until the issue is resolved.

Fix

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-119

Related Identifiers

BDU:2023-01159

CVE-2022-3161

Affected Products

Apdfl.Dll

Jt2Go

Teamcenter Visualization

CVE-2022-3161

Weakness Enumeration

Related Identifiers

Affected Products

References · 10