CVE-2021-33715
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in JT Utilities (All versions < V13.0.2.0). When parsing specially crafted JT files, a race condition could cause an object to be released before being operated on, leading to NULL pointer deference condition and causing the application to crash. An attacker could leverage this vulnerability to cause a Denial-of-Service condition in the application.
Se ha identificado una vulnerabilidad en JT Utilities (Todas las versiones anteriores a V13.0.2.0). Cuando se analizan los archivos JT especialmente diseñados, una condición de carrera podría hacer a un objeto ser liberado antes de ser operado, conllevando a una condición de desreferencia de puntero NULL y causando el bloqueo de la aplicación. Un atacante podría aprovechar esta vulnerabilidad para causar una condición de Denegación de Servicio en la aplicación
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-05-28 CVE Reserved
- 2021-07-13 CVE Published
- 2024-03-28 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-476: NULL Pointer Dereference
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-209268.pdf | 2022-10-26 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Siemens Search vendor "Siemens" | Jt Utilities Search vendor "Siemens" for product "Jt Utilities" | < 13.0.2.0 Search vendor "Siemens" for product "Jt Utilities" and version " < 13.0.2.0" | - |
Affected
|