Datalogics File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go
Plan Patch7.8SSA-360681Dec 13, 2022
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
Siemens Teamcenter Visualization and JT2Go contain multiple out-of-bounds write vulnerabilities in the APDFL library from Datalogics used for PDF parsing. A user opening a malicious PDF file with these applications could trigger the vulnerability, leading to application crash or arbitrary code execution. The vulnerability exists in versions: JT2Go before 14.1.0.5, Teamcenter Visualization V13.3 before 13.3.0.8, Teamcenter Visualization V14.0 before 14.0.0.4, and Teamcenter Visualization V14.1 before 14.1.0.5.
What this means
What could happen
An attacker can craft a malicious PDF file that, when opened in Teamcenter Visualization or JT2Go, could crash the application or execute arbitrary code with the privileges of the user running the application.
Who's at risk
Engineering and design staff at manufacturing facilities who use Teamcenter Visualization or JT2Go to view technical drawings and models in PDF format. This affects any organization using Siemens PLM software for design and process visualization, including automotive, aerospace, machinery, and discrete manufacturing.
How it could be exploited
An attacker sends a user a malicious PDF file. The user opens it in JT2Go or Teamcenter Visualization. The PDF triggers an out-of-bounds write vulnerability in the Datalogics PDF library, allowing code execution on the engineering workstation.
Prerequisites
- User must open a malicious PDF file in JT2Go or Teamcenter Visualization
- Affected version of the application must be installed
Low complexity attackUser interaction required (user must open file)Affects engineering workstationsPotential for code execution on design systems
Exploitability
Low exploit probability (EPSS 0.2%)
Affected products (4)
4 with fix
ProductAffected VersionsFix Status
JT2Go< V14.1.0.514.1.0.5
Teamcenter Visualization V13.3< V13.3.0.813.3.0.8
Teamcenter Visualization V14.0< V14.0.0.414.0.0.4
Teamcenter Visualization V14.1< V14.1.0.514.1.0.5
Remediation & Mitigation
0/5
Do now
0/1WORKAROUNDRestrict PDF file access to trusted sources and educate users not to open PDFs from untrusted origins in these applications
Schedule — requires maintenance window
0/4Patching may require device reboot — plan for process interruption
JT2Go
HOTFIXUpdate JT2Go to version 14.1.0.5 or later
Teamcenter Visualization V13.3
HOTFIXUpdate Teamcenter Visualization V13.3 to version 13.3.0.8 or later
Teamcenter Visualization V14.0
HOTFIXUpdate Teamcenter Visualization V14.0 to version 14.0.0.4 or later
Teamcenter Visualization V14.1
HOTFIXUpdate Teamcenter Visualization V14.1 to version 14.1.0.5 or later
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/401425aa-2169-404b-9f16-0fc1cd0da250