CVE-2023-1709 - OpenCVE

Datalogics Library APDFLThe v18.0.4PlusP1e and prior contains a stack-based buffer overflow due to documents containing corrupted fonts, which could allow an attack that causes an unhandled crash during the rendering process.

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Siemens	Teamcenter Visualization Jt2go

Configuration 1 [-]

OR	cpe:2.3:a:siemens:jt2go::::::::
	cpe:2.3:a:siemens:teamcenter_visualization::::::::
	cpe:2.3:a:siemens:teamcenter_visualization::::::::
	cpe:2.3:a:siemens:teamcenter_visualization::::::::
	cpe:2.3:a:siemens:teamcenter_visualization::::::::
	cpe:2.3:a:siemens:teamcenter_visualization::::::::

References

Link	Resource
https://cert-portal.siemens.com/productcert/html/ssa-629917.html	Broken Link Vendor Advisory
https://www.cisa.gov/news-events/ics-advisories/icsa-23-103-11	Third Party Advisory US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-164-01

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: icscert

Published: 2023-06-07T20:36:05.055Z

Updated: 2023-06-14T20:17:02.964Z

Reserved: 2023-03-29T22:59:38.901Z

Link: CVE-2023-1709

JSON object: View

NVD Information

Status : Modified

Published: 2023-06-07T21:15:12.933

Modified: 2023-11-07T04:04:41.863

Link: CVE-2023-1709

JSON object: View

Redhat Information

No data.

CWE

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-1709", "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "state": "PUBLISHED", "assignerShortName": "icscert", "dateReserved": "2023-03-29T22:59:38.901Z", "datePublished": "2023-06-07T20:36:05.055Z", "dateUpdated": "2023-06-14T20:17:02.964Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "JT2Go", "vendor": "Siemens ", "versions": [{"lessThan": "14.2.0.2", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Teamcenter Visualization", "vendor": "Siemens ", "versions": [{"lessThan": "13.2.0.13", "status": "affected", "version": "13.2", "versionType": "custom"}, {"lessThan": "13.3.0.9", "status": "affected", "version": "13.3", "versionType": "custom"}, {"lessThan": "14.0.0.5", "status": "affected", "version": "14.0", "versionType": "custom"}, {"lessThan": "14.1.0.7", "status": "affected", "version": "14.1", "versionType": "custom"}, {"lessThan": "14.2.0.2", "status": "affected", "version": "14.2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Library APDFL", "vendor": "Datalogics", "versions": [{"lessThanOrEqual": "v18.0.4PlusP1e", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Michael Heinzl reported this vulnerability to Siemens. "}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nDatalogics Library APDFLThe v18.0.4PlusP1e and prior contains a stack-based buffer overflow due to documents containing corrupted fonts, which could allow an attack that causes an unhandled crash during the rendering process.\n\n \n\n"}], "value": "\nDatalogics Library APDFLThe v18.0.4PlusP1e and prior contains a stack-based buffer overflow due to documents containing corrupted fonts, which could allow an attack that causes an unhandled crash during the rendering process.\n\n \n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-121", "description": "CWE-121: Stack-based Buffer Overflow", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2023-06-14T20:17:02.964Z"}, "references": [{"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-103-11"}, {"url": "https://cert-portal.siemens.com/productcert/html/ssa-629917.html"}, {"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-164-01"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n<div>Siemens has released updates for the affected products and recommends updating to the latest versions:</div><ul><li>JT2Go: <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.plm.automation.siemens.com/global/en/products/plm-components/jt2go.html\">Update to V14.2.0.2</a> or later version</li><li>Teamcenter Visualization V13.2: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.sw.siemens.com/\">Update to V13.2.0.13</a>  or later version </li><li>Teamcenter Visualization V13.3: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.sw.siemens.com/\">Update to V13.3.0.9</a>  or later version </li><li>Teamcenter Visualization V14.0: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.sw.siemens.com/\">Update to V14.0.0.5</a>  or later version </li><li>Teamcenter Visualization V14.1: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.sw.siemens.com/\">Update to V14.1.0.7</a>  or later version </li><li>Teamcenter Visualization V14.2: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.sw.siemens.com/\">Update to V14.2.0.2</a>  or later version \n\n</li></ul>"}], "value": "Siemens has released updates for the affected products and recommends updating to the latest versions:\n\n * JT2Go: Update to V14.2.0.2 https://www.plm.automation.siemens.com/global/en/products/plm-components/jt2go.html or later version\n * Teamcenter Visualization V13.2: Update to V13.2.0.13 https://support.sw.siemens.com/ \u00a0 or later version \n * Teamcenter Visualization V13.3: Update to V13.3.0.9 https://support.sw.siemens.com/ \u00a0 or later version \n * Teamcenter Visualization V14.0: Update to V14.0.0.5 https://support.sw.siemens.com/ \u00a0 or later version \n * Teamcenter Visualization V14.1: Update to V14.1.0.7 https://support.sw.siemens.com/ \u00a0 or later version \n * Teamcenter Visualization V14.2: Update to V14.2.0.2 https://support.sw.siemens.com/ \u00a0 or later version \n\n\n\n\n"}], "source": {"discovery": "EXTERNAL"}, "title": "Datalogics Library APDFL Stack-based Buffer Overflow", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n<p>Siemens has identified the following specific workarounds and mitigations that users can apply to reduce risks: </p>\n<ul><li>Avoid opening untrusted files in JT2Go and Teamcenter Visualization </li>\n</ul><p>As a general security measure, Siemens recommends protecting \nnetwork access to devices with appropriate mechanisms. To operate the \ndevices in a protected IT environment, Siemens recommends configuring \nthe environment according to Siemens' <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.siemens.com/cert/operational-guidelines-industrial-security\">operational guidelines for industrial security</a>,\n and to follow the recommendations in the product manuals. Additional \ninformation on industrial security by Siemens can be found at the <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.siemens.com/industrialsecurity\">Siemens Industrial Security web page</a>. \n</p><p>For further inquiries on security vulnerabilities in Siemens products and solutions, users should contact the <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.siemens.com/cert/advisories\">Siemens ProductCERT</a>.</p>"}], "value": "Siemens has identified the following specific workarounds and mitigations that users can apply to reduce risks: \n\n\n * Avoid opening untrusted files in JT2Go and Teamcenter Visualization \n\n\n\nAs a general security measure, Siemens recommends protecting \nnetwork access to devices with appropriate mechanisms. To operate the \ndevices in a protected IT environment, Siemens recommends configuring \nthe environment according to Siemens' operational guidelines for industrial security https://www.siemens.com/cert/operational-guidelines-industrial-security ,\n and to follow the recommendations in the product manuals. Additional \ninformation on industrial security by Siemens can be found at the Siemens Industrial Security web page https://www.siemens.com/industrialsecurity . \n\n\nFor further inquiries on security vulnerabilities in Siemens products and solutions, users should contact the Siemens ProductCERT https://www.siemens.com/cert/advisories .\n\n"}, {"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n<p>Datalogics recommends users to update to APDFL v18.0.4PlusP1g. <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.datalogics.com/datalogics-contact-us\">Contact Datalogics</a> for more information on obtaining this update.</p><p>For more information, refer to <a target=\"_blank\" rel=\"nofollow\" href=\"https://dev.datalogics.com/adobe-pdf-library/release-notes-adobe-pdf-library-v-18/\">Datalogic\u2019s release notes</a>.</p>\n\n<br>"}], "value": "Datalogics recommends users to update to APDFL v18.0.4PlusP1g. Contact Datalogics https://www.datalogics.com/datalogics-contact-us \u00a0for more information on obtaining this update.\n\nFor more information, refer to Datalogic\u2019s release notes https://dev.datalogics.com/adobe-pdf-library/release-notes-adobe-pdf-library-v-18/ .\n\n\n\n\n"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*", "matchCriteriaId": "1B3490BB-3AD4-43FC-BBEC-BB160B3F7BF8", "versionEndExcluding": "14.2.0.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*", "matchCriteriaId": "FC06105E-8D31-4AFD-88C6-2E58D01CFFE8", "versionEndExcluding": "13.2.0.13", "versionStartIncluding": "13.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*", "matchCriteriaId": "1925F7E3-339D-4355-B74D-CFA74B7F9394", "versionEndExcluding": "13.3.0.9", "versionStartIncluding": "13.3.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*", "matchCriteriaId": "E6570A4C-C453-4565-957B-82546859D633", "versionEndExcluding": "14.0.0.5", "versionStartIncluding": "14.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*", "matchCriteriaId": "EDFCD6E0-1039-4E41-9DFE-393765EE100B", "versionEndExcluding": "14.1.0.7", "versionStartIncluding": "14.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*", "matchCriteriaId": "938ADB8D-1C22-460C-B712-F091553487C5", "versionEndExcluding": "14.2.0.2", "versionStartIncluding": "14.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "\nDatalogics Library APDFLThe v18.0.4PlusP1e and prior contains a stack-based buffer overflow due to documents containing corrupted fonts, which could allow an attack that causes an unhandled crash during the rendering process.\n\n \n\n"}], "id": "CVE-2023-1709", "lastModified": "2023-11-07T04:04:41.863", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}]}, "published": "2023-06-07T21:15:12.933", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["Broken Link", "Vendor Advisory"], "url": "https://cert-portal.siemens.com/productcert/html/ssa-629917.html"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-103-11"}, {"source": "ics-cert@hq.dhs.gov", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-164-01"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-121"}], "source": "ics-cert@hq.dhs.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Secondary"}]}