OTPulse
FeedAboutContact

JT File Parsing Vulnerability in JT Open and JT Utilities

Plan Patch7.8SSA-642810Apr 11, 2023
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary

JT Open Toolkit and JT Utilities are vulnerable to memory corruption while parsing JT files. A user who opens a malicious JT file crafted by an attacker could trigger application crash or arbitrary code execution. The vulnerability affects JT Open versions before 11.3.2.0 and JT Utilities versions before 13.3.0.0. CWE-125 (out-of-bounds read).

What this means
What could happen
A memory corruption flaw in JT file parsing could crash engineering workstations or allow arbitrary code execution if an engineer opens a malicious JT file crafted by an attacker. This affects CAD/design workflows that rely on JT file viewing and manipulation.
Who's at risk
Engineering and CAD teams who use Siemens JT Open or JT Utilities for 3D model visualization and manipulation. This includes design offices, process engineering groups, and technicians who review or edit plant layout and equipment specifications stored in JT format.
How it could be exploited
An attacker crafts a malicious JT file with corrupted memory structures and distributes it via email, file sharing, or a compromised design repository. When an engineer or technician opens the file in JT Open or JT Utilities, the parser processes the corrupted data, triggering memory corruption that crashes the application or executes attacker-supplied code with the user's privileges.
Prerequisites
  • User interaction required: engineer or technician must open a malicious JT file
  • JT Open or JT Utilities must be installed and used to open files
  • Attacker must deliver the malicious JT file to the target (via email, shared drive, or social engineering)
User interaction requiredlocal attack vector onlyno authentication requiredlow complexitymemory corruption could lead to code execution
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (2)
2 with fix
ProductAffected VersionsFix Status
JT Open< V11.3.2.011.3.2.0
JT Utilities< V13.3.0.013.3.0.0
Remediation & Mitigation
0/4
Do now
0/1
HARDENINGEducate engineering staff to avoid opening JT files from untrusted or unexpected sources
Schedule — requires maintenance window
0/2

Patching may require device reboot — plan for process interruption

JT Open
HOTFIXUpdate JT Open to version 11.3.2.0 or later
JT Utilities
HOTFIXUpdate JT Utilities to version 13.3.0.0 or later
Long-term hardening
0/1
HARDENINGRestrict file handling on CAD/design workstations to prevent execution of external design files unless from approved repositories
View full Siemens ProductCERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/01b1a2e9-9c2a-4886-bf28-bb699c9a46bb
JT File Parsing Vulnerability in JT Open and JT Utilities | CVSS 7.8 - OTPulse