CVE-2021-33717
Published: 10 August 2021
Summary
CVE-2021-33717 is a medium-severity NULL Pointer Dereference (CWE-476) vulnerability in Siemens Jt2Go. Its CVSS base score is 5.5 (Medium).
Operationally, ranked at the 37.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2021-20394
Vulnerability details
A vulnerability has been identified in JT2Go (All versions < V13.2.0.1), Teamcenter Visualization (All versions < V13.2.0.1). When parsing specially crafted CGM Files, a NULL pointer deference condition could cause the application to crash. The application must be restarted to…
more
restore the service. An attacker could leverage this vulnerability to cause a Denial-of-Service condition in the application.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.