CVE-2024-26276

Name of the Vulnerable Software and Affected Versions Parasolid V35.1 versions prior to V35.1.254 Parasolid V36.0 versions prior to V36.0.207 Parasolid V36.1 versions prior to V36.1.147 JT2Go versions prior to V2312.0004 Teamcenter Visualization V14.2 versions prior to V14.2.0.12 Teamcenter Visualization V14.3 versions prior to V14.3.0.9 Teamcenter Visualization V2312 versions prior to V2312.0004

Description The issue is related to uncontrolled resource allocation. Exploitation of this issue may allow an attacker to cause a denial of service condition using specially crafted X T files. The affected application contains a stack exhaustion vulnerability while parsing these files.

Recommendations For Parasolid V35.1 versions prior to V35.1.254, update to version V35.1.254 or later. For Parasolid V36.0 versions prior to V36.0.207, update to version V36.0.207 or later. For Parasolid V36.1 versions prior to V36.1.147, update to version V36.1.147 or later. For JT2Go versions prior to V2312.0004, update to version V2312.0004 or later. For Teamcenter Visualization V14.2 versions prior to V14.2.0.12, update to version V14.2.0.12 or later. For Teamcenter Visualization V14.3 versions prior to V14.3.0.9, update to version V14.3.0.9 or later. For Teamcenter Visualization V2312 versions prior to V2312.0004, update to version V2312.0004 or later. As a temporary workaround, consider restricting the use of specially crafted X T files to minimize the risk of exploitation.