CVE-2023-33121
LowCVSS 3.3Exploitation Probability (EPSS)
Low risk8th percentile — higher than 8% of all known CVEs
Summary
A vulnerability has been identified in JT2Go and Teamcenter Visualization applications, which contains a null pointer dereference vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to crash the application, causing a denial of service condition.
Risk Assessment
The organization may experience application downtime, affecting service availability and potentially leading to data loss or operational disruptions.
Recommendation
It is recommended to update to the latest versions of JT2Go and Teamcenter Visualization to mitigate this vulnerability.
Original NVD description (English source)
A vulnerability has been identified in JT2Go (All versions < V14.2.0.3), Teamcenter Visualization V13.2 (All versions < V13.2.0.13), Teamcenter Visualization V13.3 (All versions < V13.3.0.10), Teamcenter Visualization V14.0 (All versions < V14.0.0.6), Teamcenter Visualization V14.1 (All versions < V14.1.0.8), Teamcenter Visualization V14.2 (All versions < V14.2.0.3). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

