Vulnerabilities > CVE-2022-3160 - Out-of-bounds Write vulnerability in Siemens Jt2Go and Teamcenter Visualization
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
The APDFL.dll contains an out-of-bounds write past the fixed-length heap-based buffer while parsing specially crafted PDF files. This could allow an attacker to execute code in the context of the current process.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://cert-portal.siemens.com/productcert/csaf/ssa-360681.json
- https://cert-portal.siemens.com/productcert/csaf/ssa-360681.json
- https://cert-portal.siemens.com/productcert/html/ssa-360681.html
- https://cert-portal.siemens.com/productcert/html/ssa-360681.html
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-349-15
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-349-15