Vulnerability DatabaseCVE-2023-38683

CVE-2023-38683:
Siemens JT2Go vulnerability analysis and mitigation

A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Teamcenter Visualization V13.2 (All versions < V13.2.0.14), Teamcenter Visualization V14.1 (All versions < V14.1.0.10), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted TIFF file. This could allow an attacker to execute code in the context of the current process.

Source: NVD

Related Siemens JT2Go vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2024-34086	HIGH	7.8	Siemens JT2Go	cpe:2.3:a:siemens:jt2go	No	Yes	May 14, 2024
CVE-2024-41902	HIGH	7.3	Siemens JT2Go	cpe:2.3:a:siemens:jt2go	No	Yes	Oct 08, 2024
CVE-2023-7066	HIGH	7.3	Siemens JT2Go	cpe:2.3:a:siemens:jt2go	No	Yes	Aug 12, 2024
CVE-2024-37997	HIGH	7.3	Siemens JT2Go	cpe:2.3:a:siemens:jt2go	No	Yes	Jul 09, 2024
CVE-2024-37996	MEDIUM	4.8	Siemens JT2Go	cpe:2.3:a:siemens:jt2go	No	Yes	Jul 09, 2024

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2023-38683: Siemens JT2Go vulnerability analysis and mitigation