CVE-2022-47935

CVSS V2 None CVSS V3 None
Description
A vulnerability has been identified in JT Open (All versions < V11.1.1.0), JT Utilities (All versions < V13.1.1.0), Solid Edge (All versions < V2023). The Jt1001.dll contains a memory corruption vulnerability while parsing specially crafted JT files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-19078)
Overview
  • CVE ID
  • CVE-2022-47935
  • Assigner
  • productcert@siemens.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-10T12:15:23
  • Last Modified Date
  • 2023-01-17T16:21:50
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:siemens:jt_open_toolkit:*:*:*:*:*:*:*:* 1 OR 11.1.1.0
cpe:2.3:a:siemens:jt_utilities:*:*:*:*:*:*:*:* 1 OR 13.1.1.0
cpe:2.3:a:siemens:solid_edge:*:*:*:*:*:*:*:* 1 OR se2023
References
History
Created Old Value New Value Data Type Notes
2023-01-10 12:20:30 Added to TrackCVE
2023-01-10 12:20:31 Weakness Enumeration new
2023-01-10 14:18:55 2023-01-10T13:36:03 CVE Modified Date updated
2023-01-10 14:18:55 Received Awaiting Analysis Vulnerability Status updated
2023-01-13 12:15:51 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-17 18:47:42 2023-01-17T16:21:50 CVE Modified Date updated
2023-01-17 18:47:42 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-17 18:47:43 CPE Information updated