CVE-2021-33714
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in JT Utilities (All versions < V13.0.2.0). When parsing specially crafted JT files, a missing check for the validity of an iterator leads to NULL pointer deference condition, causing the application to crash. An attacker could leverage this vulnerability to cause a Denial-of-Service condition in the application.
Se ha identificado una vulnerabilidad en JT Utilities (Todas las versiones anteriores a V13.0.2.0). Cuando se analizan los archivos JT especialmente diseñados, la falta de comprobación de la validez de un iterador conlleva a una condición de desreferencia del puntero NULL, causando el bloqueo de la aplicación. Un atacante podría aprovechar esta vulnerabilidad para causar una condición de Denegación de Servicio en la aplicación
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-05-28 CVE Reserved
- 2021-07-13 CVE Published
- 2024-03-28 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-476: NULL Pointer Dereference
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-209268.pdf | 2021-07-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | Jt Utilities Search vendor "Siemens" for product "Jt Utilities" | < 13.0.2.0 Search vendor "Siemens" for product "Jt Utilities" and version " < 13.0.2.0" | - |
Affected
| ||||||