Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go
Plan Patch7.8SSA-661579May 14, 2024
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
Teamcenter Visualization (versions 14.1, 14.2, 14.3, and 2312) and JT2Go contain multiple file parsing vulnerabilities in the CGM and XML file parsers. When a user opens a malicious CGM or XML file, the application could crash due to out-of-bounds memory access (buffer overflow) or potentially execute arbitrary code with the user's privileges. The vulnerability is triggered during file parsing when the application processes the malformed input.
What this means
What could happen
An attacker could craft a malicious CGM or XML file that, when opened by a user in Teamcenter Visualization or JT2Go, could crash the application or execute arbitrary code on the user's workstation with their privileges.
Who's at risk
Engineering and design staff at utilities and manufacturers who use Siemens Teamcenter Visualization or JT2Go to view or work with CAD files (particularly CGM or XML format design files). This includes power plant engineers, electrical designers, and any plant personnel responsible for design review and asset documentation.
How it could be exploited
An attacker creates a malicious CGM or XML file and sends it to a user (via email, file share, or by placing it on a network location where engineering staff retrieve design files). When the user opens the file in Teamcenter Visualization or JT2Go, the file parser processes the malicious content, triggering a buffer overflow or memory corruption that crashes the application or runs attacker commands.
Prerequisites
- User must open a malicious CGM or XML file with Teamcenter Visualization or JT2Go
- Vulnerable version of the software must be installed
- User interaction required to open the file
user interaction required (social engineering)low complexity attackaffects engineering workstationspotential for arbitrary code execution
Exploitability
Low exploit probability (EPSS 0.2%)
Affected products (5)
5 with fix
ProductAffected VersionsFix Status
JT2Go<V2312.00012312.0001
Teamcenter Visualization V14.1<V14.1.0.1314.1.0.13
Teamcenter Visualization V14.2<V14.2.0.1014.2.0.10
Teamcenter Visualization V14.3<V14.3.0.714.3.0.7
Teamcenter Visualization V2312<V2312.00012312.0001
Remediation & Mitigation
0/7
Do now
0/2JT2Go
WORKAROUNDConsider restricting file type associations or disabling automatic file opening in Teamcenter Visualization and JT2Go
All products
HARDENINGEducate users not to open CGM or XML files from untrusted sources
Schedule — requires maintenance window
0/5Patching may require device reboot — plan for process interruption
JT2Go
HOTFIXUpdate JT2Go to version 2312.0001 or later
Teamcenter Visualization V14.1
HOTFIXUpdate Teamcenter Visualization V14.1 to version 14.1.0.13 or later
Teamcenter Visualization V14.2
HOTFIXUpdate Teamcenter Visualization V14.2 to version 14.2.0.10 or later
Teamcenter Visualization V14.3
HOTFIXUpdate Teamcenter Visualization V14.3 to version 14.3.0.7 or later
Teamcenter Visualization V2312
HOTFIXUpdate Teamcenter Visualization V2312 to version 2312.0001 or later
CVEs (2)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/2f9d14ba-1522-4b3e-9c8a-03758977eba0