What is CVE-2022-3159?

CVE-2022-3159 is a high-severity vulnerability in Siemens Jt2go, classified under Stack-based Buffer Overflow. CVSS score: 7.8/10. Published 2023-01-13.

How severe is CVE-2022-3159?

High severity. CVSS v3 base score is 7.8 out of 10.

Buffer overflow in Siemens Jt2go

CVE-2022-3159

The APDFL.dll contains a stack-based buffer overflow vulnerability that could be triggered while parsing specially crafted PDF files. This could allow an attacker to execute code in the context of the current process.

Vulnerability class: Buffer Overflow

EPSS: 0.002 (38.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.

Affected products

Siemens Jt2go — versions 0
Siemens Teamcenter Visualization V13.3 — versions 0
Siemens Teamcenter Visualization V14.0 — versions 0
Siemens Teamcenter Visualization V14.1 — versions 0

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

Frequently asked questions

What is CVE-2022-3159?: CVE-2022-3159 is a high-severity vulnerability in Siemens Jt2go, classified under Stack-based Buffer Overflow. CVSS score: 7.8/10. Published 2023-01-13.
How severe is CVE-2022-3159?: High severity. CVSS v3 base score is 7.8 out of 10.