CVE-2023-51744

Name of the Vulnerable Software and Affected Versions JT2Go versions prior to 14.3.0.6 Teamcenter Visualization V13.3 versions prior to 13.3.0.13 Teamcenter Visualization V14.1 versions prior to 14.1.0.12 Teamcenter Visualization V14.2 versions prior to 14.2.0.9 Teamcenter Visualization V14.3 versions prior to 14.3.0.6

Description A null pointer dereference vulnerability has been identified in the affected applications while parsing specially crafted CGM files. This vulnerability can be leveraged by an attacker to crash the application, causing a denial of service condition. The issue is related to errors in pointer handling when processing CGM files, which can allow an attacker to cause a service disruption.

Recommendations For JT2Go versions prior to 14.3.0.6, update to version 14.3.0.6 or later. For Teamcenter Visualization V13.3 versions prior to 13.3.0.13, update to version 13.3.0.13 or later. For Teamcenter Visualization V14.1 versions prior to 14.1.0.12, update to version 14.1.0.12 or later. For Teamcenter Visualization V14.2 versions prior to 14.2.0.9, update to version 14.2.0.9 or later. For Teamcenter Visualization V14.3 versions prior to 14.3.0.6, update to version 14.3.0.6 or later.