November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Advisory – ICS: Advantech WebAccess/SCADA
June 18, 2021Rewterz Threat Advisory – CVE-2020-11978 – Apache Airflow Command Injection
June 18, 2021Rewterz Threat Advisory – ICS: Advantech WebAccess/SCADA
June 18, 2021Rewterz Threat Advisory – CVE-2020-11978 – Apache Airflow Command Injection
June 18, 2021
Severity
High
Analysis Summary
CVE-2021-27390
This Zero-Day vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TIFF files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Impact
- Remote Code Execution
Affected Vendors
Siemens
Affected Products
JT2Go: All versions < V13.1.0.3
Remediation
Refer to vendor advisory for the complete list of affected products and their respective patches at https://www.plm.automation.siemens.com/global/en/products/plm-components/jt2go.html