CVE-2023-28830
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Solid Edge SE2022 (All versions < V222.0 Update 13), Solid Edge SE2023 (All versions < V223.0 Update 4), Teamcenter Visualization V13.2 (All versions < V13.2.0.15), Teamcenter Visualization V13.3 (All versions < V13.3.0.11), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted ASM file. An attacker could leverage this vulnerability to execute code in the context of the current process.
Se ha identificado una vulnerabilidad en JT2Go (Todas las versiones inferiores a V14.2.0.5), Solid Edge SE2022 (Todas las versiones inferiores a V222.0 Update 13), Solid Edge SE2023 (Todas las versiones inferiores a V223.0 Update 4), Teamcenter Visualization V13. 2 (Todas las versiones inferiores a V13.2.0.15), Teamcenter Visualization V13.3 (Todas las versiones inferiores a V13.3.0.11), Teamcenter Visualization V14.1 (Todas las versiones inferiores a V14.1.0.11), Teamcenter Visualization V14.2 (Todas las versiones inferiores a V14.2.0.5). La aplicación afectada contiene una vulnerabilidad "use-after-free" que podría activarse al analizar un archivo ASM especialmente diseñado. Un atacante podría aprovechar esta vulnerabilidad para ejecutar código en el contexto del proceso actual.
CVSS Scores
SSVC
- Decision:Track*
Timeline
- 2023-03-24 CVE Reserved
- 2023-08-08 CVE Published
- 2024-09-09 EPSS Updated
- 2024-10-23 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-416: Use After Free
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-131450.pdf | 2023-08-15 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | Jt2go Search vendor "Siemens" for product "Jt2go" | < 14.2.0.5 Search vendor "Siemens" for product "Jt2go" and version " < 14.2.0.5" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Teamcenter Visualization Search vendor "Siemens" for product "Teamcenter Visualization" | >= 13.2.0 < 13.2.0.15 Search vendor "Siemens" for product "Teamcenter Visualization" and version " >= 13.2.0 < 13.2.0.15" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Teamcenter Visualization Search vendor "Siemens" for product "Teamcenter Visualization" | >= 13.3.0 < 13.3.0.11 Search vendor "Siemens" for product "Teamcenter Visualization" and version " >= 13.3.0 < 13.3.0.11" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Teamcenter Visualization Search vendor "Siemens" for product "Teamcenter Visualization" | >= 14.1 < 14.1.0.11 Search vendor "Siemens" for product "Teamcenter Visualization" and version " >= 14.1 < 14.1.0.11" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Teamcenter Visualization Search vendor "Siemens" for product "Teamcenter Visualization" | >= 14.2 < 14.2.0.5 Search vendor "Siemens" for product "Teamcenter Visualization" and version " >= 14.2 < 14.2.0.5" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | - | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_1 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_1" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_2 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_2" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_3 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_3" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_4 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_4" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_5 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_5" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_7 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_7" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_8 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_8" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_9 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_9" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_10 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_10" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_11 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_11" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2022 Search vendor "Siemens" for product "Solid Edge Se2022" | maintenance_pack_12 Search vendor "Siemens" for product "Solid Edge Se2022" and version "maintenance_pack_12" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2023 Search vendor "Siemens" for product "Solid Edge Se2023" | - | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2023 Search vendor "Siemens" for product "Solid Edge Se2023" | update_0001 Search vendor "Siemens" for product "Solid Edge Se2023" and version "update_0001" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2023 Search vendor "Siemens" for product "Solid Edge Se2023" | update_0002 Search vendor "Siemens" for product "Solid Edge Se2023" and version "update_0002" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Solid Edge Se2023 Search vendor "Siemens" for product "Solid Edge Se2023" | update_0003 Search vendor "Siemens" for product "Solid Edge Se2023" and version "update_0003" | - |
Affected
| ||||||