CVE-2023-33122
LowCVSS 3.3Exploitation Probability (EPSS)
Low risk9th percentile — higher than 9% of all known CVEs
Summary
A vulnerability has been identified in JT2Go and Teamcenter Visualization applications that are in versions earlier than specified. The issue involves an out of bounds read past the end of an allocated buffer while parsing a specially crafted CGM file, which could lead to the disclosure of sensitive information.
Risk Assessment
This vulnerability could allow an attacker to disclose sensitive information, posing a serious threat to the organization's security.
Recommendation
It is recommended to update to the latest versions of the applications to eliminate this vulnerability and protect sensitive information.
Original NVD description (English source)
A vulnerability has been identified in JT2Go (All versions < V14.2.0.3), Teamcenter Visualization V13.2 (All versions < V13.2.0.13), Teamcenter Visualization V13.3 (All versions < V13.3.0.10), Teamcenter Visualization V14.0 (All versions < V14.0.0.6), Teamcenter Visualization V14.1 (All versions < V14.1.0.8), Teamcenter Visualization V14.2 (All versions < V14.2.0.3). The affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted CGM file. This vulnerability could allow an attacker to disclose sensitive information.

