all InfoSec news
SSA-429204 V1.0: Open Design Alliance Drawings SDK Vulnerabilities in JT2Go and Teamcenter Visualization
Siemens ProductCERT Security Advisories cert-portal.siemens.com
JT2Go and Teamcenter Visualization are affected by multiple file parsing vulnerabilities in Drawings SDK from Open Design Alliance. If a user is tricked to open a malicious DWG file with any of the affected products, this could lead the application to crash or potentially lead to arbitrary code execution.
Siemens has released updates for the affected products and recommends to update to the latest versions.
Note:
This advisory covers security vulnerabilities recently disclosed by Open Design Alliance [0]
[0] https://www.opendesign.com/security-advisories
alliance application crash design dwg file malicious parsing products sdk ssa visualization vulnerabilities