Multiple File Parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization
Plan Patch7.8SSA-301589Feb 8, 2022
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
Siemens Solid Edge, JT2Go, and Teamcenter Visualization contain multiple buffer overflow and memory safety vulnerabilities in file parsing routines (CWE-119, CWE-787, CWE-122, CWE-125). These vulnerabilities affect the handling of PDF, DXF, and PAR file formats. An attacker can craft a malicious file in any of these formats to crash the application or achieve arbitrary code execution when a user opens the file. Versions are: JT2Go before 13.2.0.7, Teamcenter Visualization 12.4 before 12.4.0.13, Teamcenter Visualization 13.1 before 13.1.0.8 or 13.1.0.9, Teamcenter Visualization 13.2 before 13.2.0.7, Teamcenter Visualization 13.3 before 13.3.0.1, and Solid Edge SE2021 and SE2022 (no fix available for these versions).
What this means
What could happen
An attacker could craft malicious design files (PDF, DXF, or PAR format) that crash the application or potentially execute arbitrary code on an engineering workstation when a user opens them in Solid Edge, JT2Go, or Teamcenter Visualization.
Who's at risk
This affects design and visualization engineers who use Solid Edge (CAD design), JT2Go (3D visualization), or Teamcenter Visualization (PLM visualization) for mechanical design, manufacturing, and product lifecycle management. The risk is primarily to engineering workstations where these tools run. Some versions of Solid Edge (SE2021 and SE2022) have no patch available and will require alternative mitigations.
How it could be exploited
An attacker crafts a malicious file in PDF, DXF, or PAR format and tricks a user into opening it with one of the affected products. The file triggers a buffer overflow or memory safety issue during parsing, causing the application to crash or allowing code execution with the privileges of the user opening the file.
Prerequisites
- User must be tricked into opening a malicious crafted file (PDF, DXF, or PAR)
- File must be in a format supported by the affected product
- User must have the vulnerable version of the product installed
No authentication requiredLow complexity attackUser interaction required (social engineering)Affects engineering workstations with design dataNo patch available for some Solid Edge versions
Exploitability
Low exploit probability (EPSS 0.4%)
Affected products (8)
6 with fix2 EOL
ProductAffected VersionsFix Status
JT2Go< V13.2.0.713.2.0.7
Teamcenter Visualization V12.4< V12.4.0.1312.4.0.13
Teamcenter Visualization V13.1< V13.1.0.813.1.0.8
Teamcenter Visualization V13.1< V13.1.0.913.1.0.9
Teamcenter Visualization V13.2< V13.2.0.713.2.0.7
Teamcenter Visualization V13.3< V13.3.0.113.3.0.1
Solid Edge SE2021< SE2021MP9No fix (EOL)
Solid Edge SE2022< SE2022MP1No fix (EOL)
Remediation & Mitigation
0/7
Do now
0/1WORKAROUNDEducate users not to open design files from untrusted sources, especially PDF, DXF, and PAR files
Schedule — requires maintenance window
0/5Patching may require device reboot — plan for process interruption
JT2Go
HOTFIXUpdate JT2Go to version 13.2.0.7 or later
Teamcenter Visualization V12.4
HOTFIXUpdate Teamcenter Visualization V12.4 to version 12.4.0.13 or later
Teamcenter Visualization V13.1
HOTFIXUpdate Teamcenter Visualization V13.1 to version 13.1.0.8 or 13.1.0.9 or later
Teamcenter Visualization V13.2
HOTFIXUpdate Teamcenter Visualization V13.2 to version 13.2.0.7 or later
Teamcenter Visualization V13.3
HOTFIXUpdate Teamcenter Visualization V13.3 to version 13.3.0.1 or later
Mitigations - no patch available
0/1The following products have reached End of Life with no planned fix: Solid Edge SE2021, Solid Edge SE2022. Apply the following compensating controls:
HARDENINGImplement file transfer controls to restrict where design files can be received from (e.g., only from trusted internal repositories or known vendors)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/3e9b6072-1ff0-440b-bde9-2545d143e333