PT-2024-2690 · Parasolid · Parasolid
Published
2024-02-13
·
Updated
2024-10-10
·
CVE-2024-22043
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Parasolid V35.0 versions prior to V35.0.251
Parasolid V35.1 versions prior to V35.1.170
Description
The issue is related to a null pointer dereference vulnerability in Parasolid while parsing specially crafted XT files. This could allow an attacker to crash the application, causing a denial of service condition.
Recommendations
For Parasolid V35.0 versions prior to V35.0.251, update to version V35.0.251 or later.
For Parasolid V35.1 versions prior to V35.1.170, update to version V35.1.170 or later.
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Parasolid