A vulnerability has been identified in JT2Go (All versions < V2312.0004), Parasolid V35.1 (All versions < V35.1.254), Parasolid V36.0 (All versions < V36.0.207), Parasolid V36.1 (All versions < V36.1.147), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.9), Teamcenter Visualization V2312 (All versions < V2312.0004). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.
References
| Link | Resource |
|---|---|
| https://cert-portal.siemens.com/productcert/html/ssa-222019.html | Vendor Advisory |
| https://cert-portal.siemens.com/productcert/html/ssa-771940.html | Vendor Advisory |
| https://cert-portal.siemens.com/productcert/html/ssa-222019.html | Vendor Advisory |
| https://cert-portal.siemens.com/productcert/html/ssa-771940.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
03 Oct 2025, 20:06
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://cert-portal.siemens.com/productcert/html/ssa-222019.html - Vendor Advisory | |
| References | () https://cert-portal.siemens.com/productcert/html/ssa-771940.html - Vendor Advisory | |
| First Time |
Siemens
Siemens parasolid Siemens teamcenter Visualization Siemens jt2go |
|
| CPE | cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:* |
Information
Published : 2024-04-09 09:15
Updated : 2025-10-03 20:06
NVD link : CVE-2024-26275
Mitre link : CVE-2024-26275
CVE.ORG link : CVE-2024-26275
JSON object : View
Products Affected
siemens
- jt2go
- teamcenter_visualization
- parasolid
CWE
CWE-125
Out-of-bounds Read