Siemens Teamcenter Visualization

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Siemens Teamcenter Visualization.

By the Year

In 2026 there have been 0 vulnerabilities in Siemens Teamcenter Visualization. Last year, in 2025 Teamcenter Visualization had 7 security vulnerabilities published. Right now, Teamcenter Visualization is on track to have less security vulnerabilities in 2026 than it did last year.

Year	Vulnerabilities	Average Score
2026	0	0.00
2025	7	7.80
2024	24	7.42
2023	28	7.55
2022	29	6.54
2021	90	7.13

It may take a day or so for new Teamcenter Visualization vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Siemens Teamcenter Visualization Security Vulnerabilities

Teamcenter Visualz: OOB Read in WRL Parsing (<V14.3.0.14)
CVE-2025-32454 7.8 - High - May 13, 2025

A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.14), Teamcenter Visualization V2312 (All versions < V2312.0010), Teamcenter Visualization V2406 (All versions < V2406.0008), Teamcenter Visualization V2412 (All versions < V2412.0004), Tecnomatix Plant Simulation V2404 (All versions < V2404.0013). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

OOB Write in Teamcenter/Tecnomatix - WRL parsing vulnerability
CVE-2025-23396 7.8 - High - March 11, 2025

A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected applications contain an out of bounds write vulnerability when parsing a specially crafted WRL file. This could allow an attacker to execute code in the context of the current process.

Memory Corruption

Memory Corruption CVE-2025-23397 in Teamcenter Visualization <v14.3.0.13
CVE-2025-23397 7.8 - High - March 11, 2025

A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Buffer Overflow

Teamcenter Visual & Tecnomatix PS Memory Corruption in WRL Parsing
CVE-2025-23398 7.8 - High - March 11, 2025

A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Buffer Overflow

Memory Corruption in Siemens Teamcenter Visualiz. <V14.3.0.13 (WRL)
CVE-2025-23400 7.8 - High - March 11, 2025

A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Buffer Overflow

Teamcenter Viz & Tecnomatix Plant Sim OOB Read in WRL < V14.3.0.13 etc.
CVE-2025-23401 7.8 - High - March 11, 2025

A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Teamcenter Visualization OOB Read <v14.3.0.13 Allows Code Exec via WRL
CVE-2025-27438 7.8 - High - March 11, 2025

A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.13), Teamcenter Visualization V2312 (All versions < V2312.0009), Teamcenter Visualization V2406 (All versions < V2406.0007), Teamcenter Visualization V2412 (All versions < V2412.0002), Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Teamcenter Visualization and Tecnomatix Plant Simulation Stack-Based Buffer Overflow Vulnerability i
CVE-2024-53041 7.8 - High - December 10, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain a stack based overflow vulnerability while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-25000)

Stack Overflow

Teamcenter Visualization and Tecnomatix Plant Simulation Out-of-Bounds Read Vulnerability in WRL Fil
CVE-2024-53242 7.8 - High - December 10, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-25206)

Out-of-bounds Read

Siemens Teamcenter Viz <V14.2.0.14 OOB Read via WRL
CVE-2024-45463 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

OOB Read in Siemens Teamcenter Visualization WRL Parser Code Exec
CVE-2024-45464 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Teamcenter Viz OOR in WRL Parser (V<14.2.0.14)
CVE-2024-45465 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

OOB Read in Teamcenter Viz & Tecnomatix Sim via crafted WRL
CVE-2024-45466 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Teamcenter Visualization < v14.2.0.14 memory corruption via WRL files
CVE-2024-45468 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.

Buffer Overflow

Teamcenter Visualization V14.2 OOB write in WRL parser (before 14.2.0.14)
CVE-2024-45469 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds write vulnerability when parsing a specially crafted WRL file. This could allow an attacker to execute code in the context of the current process.

Memory Corruption

OOB Write via WRL parsing in Teamcenter/Tecnomatix <1.3.0.14 (CVE-2024-45470)
CVE-2024-45470 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds write vulnerability when parsing a specially crafted WRL file. This could allow an attacker to execute code in the context of the current process.

Memory Corruption

Teamcenter Visualization Pervasive OOB Write in WRL Files (V14.2<14)
CVE-2024-45471 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain an out of bounds write vulnerability when parsing a specially crafted WRL file. This could allow an attacker to execute code in the context of the current process.

Memory Corruption

MemCorruption in Teamcenter Viz & Tecnomatix PlantSim WRL Parser <v14.3,<v2404
CVE-2024-45473 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. An attacker could leverage this in conjunction with other vulnerabilities to execute code in the context of the current process.

Buffer Overflow

MemCorrupt in Teamcenter Vis <14.2.0.14 via WRLParser
CVE-2024-45474 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. An attacker could leverage this in conjunction with other vulnerabilities to execute code in the context of the current process.

Buffer Overflow

Memory Corruption in Siemens Teamcenter Visualization V<14.2.0.14 via WRL
CVE-2024-45475 7.8 - High - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected application is vulnerable to memory corruption while parsing specially crafted WRL files. An attacker could leverage this in conjunction with other vulnerabilities to execute code in the context of the current process.

Buffer Overflow

Teamcenter Viz Null Pointer Deref (<V14.2.0.14) via WRL DoS
CVE-2024-45476 3.3 - Low - October 08, 2024

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted WRL files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

NULL Pointer Dereference

DoS via Null Ptr Deref in JT Open & Teamcenter Visualization < Specified V.
CVE-2024-37996 - July 09, 2024

A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (All versions < V14.3.0.11), Teamcenter Visualization V2312 (All versions < V2312.0008), Teamcenter Visualization V2406 (All versions < V2406.0003). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted XML files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

NULL Pointer Dereference

Stack-based overflow in Teamcenter Visualization XML parser (<V14.2.0.13)
CVE-2024-37997 - July 09, 2024

A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (All versions < V14.3.0.11), Teamcenter Visualization V2312 (All versions < V2312.0008), Teamcenter Visualization V2406 (All versions < V2406.0003). The affected applications contain a stack based overflow vulnerability while parsing specially crafted XML files. This could allow an attacker to execute code in the context of the current process.

Stack Overflow

OOB Read in JT2Go & Teamcenter Visualization <V2312.0005
CVE-2024-32635 - May 14, 2024

A vulnerability has been identified in JT2Go (All versions < V2312.0005), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.10), Teamcenter Visualization V2312 (All versions < V2312.0005). The affected applications contain an out of bounds read past the unmapped memory region while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Teamcenter Vis & JT2Go NPE DoS via X_T file (V<14.2.0.12/14.3.0.10/2312.0005)
CVE-2024-32637 - May 14, 2024

A vulnerability has been identified in JT2Go (All versions < V2312.0005), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.10), Teamcenter Visualization V2312 (All versions < V2312.0005). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted X_T files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

NULL Pointer Dereference

Teamcenter Visualiz. Stack Overflow via XML (V14.x, V2312)
CVE-2024-34085 - May 14, 2024

A vulnerability has been identified in JT2Go (All versions < V2312.0001), Teamcenter Visualization V14.1 (All versions < V14.1.0.13), Teamcenter Visualization V14.2 (All versions < V14.2.0.10), Teamcenter Visualization V14.3 (All versions < V14.3.0.7), Teamcenter Visualization V2312 (All versions < V2312.0001). The affected applications contain a stack overflow vulnerability while parsing specially crafted XML files. This could allow an attacker to execute code in the context of the current process.

Stack Overflow

OTB Write in Siemens Teamcenter Visualization (<V14.1.0.13 / <V14.2.0.10 / <V14.3.0.7 / <V2312.0001)
CVE-2024-34086 - May 14, 2024

A vulnerability has been identified in JT2Go (All versions < V2312.0001), Teamcenter Visualization V14.1 (All versions < V14.1.0.13), Teamcenter Visualization V14.2 (All versions < V14.2.0.10), Teamcenter Visualization V14.3 (All versions < V14.3.0.7), Teamcenter Visualization V2312 (All versions < V2312.0001). The affected applications contain an out of bounds write vulnerability when parsing a specially crafted CGM file. This could allow an attacker to execute code in the context of the current process.

Memory Corruption

OOB Read in JT2Go & Teamcenter Vis ( V14.3.0.6)
CVE-2023-51439 7.8 - High - January 09, 2024

A vulnerability has been identified in JT2Go (All versions < V14.3.0.6), Teamcenter Visualization V13.3 (All versions < V13.3.0.13), Teamcenter Visualization V14.1 (All versions < V14.1.0.12), Teamcenter Visualization V14.2 (All versions < V14.2.0.9), Teamcenter Visualization V14.3 (All versions < V14.3.0.6). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted CGM files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Teamcenter Visualization JT2Go NullPtr Deref DoS in CGM Parser <14.3.0.6
CVE-2023-51744 5.5 - Medium - January 09, 2024

A vulnerability has been identified in JT2Go (All versions < V14.3.0.6), Teamcenter Visualization V13.3 (All versions < V13.3.0.13), Teamcenter Visualization V14.1 (All versions < V14.1.0.12), Teamcenter Visualization V14.2 (All versions < V14.2.0.9), Teamcenter Visualization V14.3 (All versions < V14.3.0.6). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

NULL Pointer Dereference

Teamcenter Vis Stack Overflow in CGM Parsing (V<14.3.0.6)
CVE-2023-51745 7.8 - High - January 09, 2024

A vulnerability has been identified in JT2Go (All versions < V14.3.0.6), Teamcenter Visualization V13.3 (All versions < V13.3.0.13), Teamcenter Visualization V14.1 (All versions < V14.1.0.12), Teamcenter Visualization V14.2 (All versions < V14.2.0.9), Teamcenter Visualization V14.3 (All versions < V14.3.0.6). The affected applications contain a stack overflow vulnerability while parsing specially crafted CGM files. This could allow an attacker to execute code in the context of the current process.

Stack Overflow

Teamcenter Visualization <14.3.0.6 stack overflow via CGM
CVE-2023-51746 7.8 - High - January 09, 2024

A vulnerability has been identified in JT2Go (All versions < V14.3.0.6), Teamcenter Visualization V13.3 (All versions < V13.3.0.13), Teamcenter Visualization V14.1 (All versions < V14.1.0.12), Teamcenter Visualization V14.2 (All versions < V14.2.0.9), Teamcenter Visualization V14.3 (All versions < V14.3.0.6). The affected applications contain a stack overflow vulnerability while parsing specially crafted CGM files. This could allow an attacker to execute code in the context of the current process.

Stack Overflow

Datalogics APDFL lib memory corruption in PDF parsing
CVE-2021-38405 7.8 - High - November 21, 2023

The Datalogics APDFL library used in affected products is vulnerable to memory corruption condition while parsing specially crafted PDF files. An attacker could leverage this vulnerability to execute code in the context of the current process.

Memory Corruption

Stack Buffer Overflow in Teamcenter Vis WRL Parser (before V13.3.0.12)
CVE-2023-38070 7.8 - High - September 12, 2023

A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application is vulnerable to stack-based buffer overflow while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-20818)

Memory Corruption

JT2Go & Teamcenter Vis: Heap Buffer Overflow (WRL) Pre-V14.3.0.1
CVE-2023-38071 7.8 - High - September 12, 2023

A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-20824)

Memory Corruption

CVE-2023-38072: OOB write in JT2Go/Teamcenter Viz <V14.3, Tecnomatix PS<V2302 via WRL
CVE-2023-38072 7.8 - High - September 12, 2023

A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-20825)

Memory Corruption

SIEMENS Teamcenter Visual <V13.3.0.12: WRL Type Confusion
CVE-2023-38073 7.8 - High - September 12, 2023

A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application contains a type confusion vulnerability while parsing WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-20826)

Object Type Confusion

WRL Parsing Type Confusion Enables Code Exec in JT2Go, Teamcenter & Tecnomatix
CVE-2023-38074 7.8 - High - September 12, 2023

A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application contains a type confusion vulnerability while parsing WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-20840)

Object Type Confusion

Use-after-free in Teamcenter Visualization via WRL files (<14.3.0.1)
CVE-2023-38075 7.8 - High - September 12, 2023

A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted WRL files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-20842)

Dangling pointer

Heap buffer overflow in Siemens Teamcenter Vis <13.3.0.12 parsing WRL files
CVE-2023-38076 7.8 - High - September 12, 2023

A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-21041)

Memory Corruption

Parasolid/Teamcenter Viz NPD Exec pre v34.1.258, 35.0.254, 35.1.171, 14.1.0.11, 14.2.0.6, 14.3.0.3
CVE-2023-38524 7.8 - High - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected applications contain null pointer dereference while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

NULL Pointer Dereference

Parasolid DOS via Stack Exhaustion (V34.1 < 258, V35.0 < 254, V35.1 < 171)
CVE-2023-38532 5.5 - Medium - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected application contains a stack exhaustion vulnerability while parsing a specially crafted X_T file. This could allow an attacker to cause denial of service condition.

Allocation of Resources Without Limits or Throttling

Out-of-Bounds Read in Parasolid V34/35 & Teamcenter Viz <=14.3
CVE-2023-38531 7.8 - High - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.184), Teamcenter Visualization V14.1 (All versions), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.9), Teamcenter Visualization V2312 (All versions < V2312.0004). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Parasolid 34.1/35.x OOB Read (X_T Files) CVE-2023-38530
CVE-2023-38530 7.8 - High - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Parasolid & Teamcenter Visual. OOB write via X_T file (pre V35.1.197, V14.2.0.6)
CVE-2023-38528 7.8 - High - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.197), Parasolid V35.1 (All versions < V35.1.184), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted X_T file. This could allow an attacker to execute code in the context of the current process.

Memory Corruption

Parasolid & Teamcenter OOB Read in X_T Files before V34.1.258 & V35.0.254
CVE-2023-38527 7.8 - High - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Teamcenter Visualization V14.1 (All versions), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.9), Teamcenter Visualization V2312 (All versions < V2312.0004). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

OOB Read CVE-2023-38526 in Parasolid V34.1/V35.1 and Teamcenter Vis V14.x
CVE-2023-38526 7.8 - High - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Parasolid/Teamcenter OOB CVE-2023-38525 (V34.1/V35/V35.1/V14.1/14.2/14.3)
CVE-2023-38525 7.8 - High - August 08, 2023

A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

UEF in Siemens JT2Go/Teamcenter Vis. (<V14.2.0.5) via ASM parse RCE
CVE-2023-28830 7.8 - High - August 08, 2023

A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Solid Edge SE2022 (All versions < V222.0 Update 13), Solid Edge SE2023 (All versions < V223.0 Update 4), Teamcenter Visualization V13.2 (All versions < V13.2.0.15), Teamcenter Visualization V13.3 (All versions < V13.3.0.11), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted ASM file. An attacker could leverage this vulnerability to execute code in the context of the current process.

Dangling pointer

JT2Go & Teamcenter Viz <V14.2.0.5: OOB Read in TIFF Parsing Code Exec
CVE-2023-38682 7.8 - High - August 08, 2023

A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Teamcenter Visualization V13.2 (All versions < V13.2.0.14), Teamcenter Visualization V14.1 (All versions < V14.1.0.10), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted TIFF files. This could allow an attacker to execute code in the context of the current process.

Out-of-bounds Read

Parasolid/Teamcenter Viz OOB Read in X_T Files (pre 34.1.258/35.0.254/35.1.184)
CVE-2023-38529 7.8 - High - August 08, 2023

Out-of-bounds Read

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Siemens Teamcenter Visualization or by Siemens? Click the Watch button to subscribe.

Siemens
Vendor

Siemens Teamcenter Visualization
Product

Siemens Teamcenter Visualization

Don't miss out!

By the Year

Recent Siemens Teamcenter Visualization Security Vulnerabilities

Teamcenter Visualz: OOB Read in WRL Parsing (<V14.3.0.14) CVE-2025-32454 7.8 - High - May 13, 2025

OOB Write in Teamcenter/Tecnomatix - WRL parsing vulnerability CVE-2025-23396 7.8 - High - March 11, 2025

Memory Corruption CVE-2025-23397 in Teamcenter Visualization <v14.3.0.13 CVE-2025-23397 7.8 - High - March 11, 2025

Teamcenter Visual & Tecnomatix PS Memory Corruption in WRL Parsing CVE-2025-23398 7.8 - High - March 11, 2025

Memory Corruption in Siemens Teamcenter Visualiz. <V14.3.0.13 (WRL) CVE-2025-23400 7.8 - High - March 11, 2025

Teamcenter Viz & Tecnomatix Plant Sim OOB Read in WRL < V14.3.0.13 etc. CVE-2025-23401 7.8 - High - March 11, 2025

Teamcenter Visualization OOB Read <v14.3.0.13 Allows Code Exec via WRL CVE-2025-27438 7.8 - High - March 11, 2025

Teamcenter Visualization and Tecnomatix Plant Simulation Stack-Based Buffer Overflow Vulnerability i CVE-2024-53041 7.8 - High - December 10, 2024

Teamcenter Visualization and Tecnomatix Plant Simulation Out-of-Bounds Read Vulnerability in WRL Fil CVE-2024-53242 7.8 - High - December 10, 2024

Siemens Teamcenter Viz <V14.2.0.14 OOB Read via WRL CVE-2024-45463 7.8 - High - October 08, 2024

OOB Read in Siemens Teamcenter Visualization WRL Parser Code Exec CVE-2024-45464 7.8 - High - October 08, 2024

Teamcenter Viz OOR in WRL Parser (V<14.2.0.14) CVE-2024-45465 7.8 - High - October 08, 2024

OOB Read in Teamcenter Viz & Tecnomatix Sim via crafted WRL CVE-2024-45466 7.8 - High - October 08, 2024

Teamcenter Visualization < v14.2.0.14 memory corruption via WRL files CVE-2024-45468 7.8 - High - October 08, 2024

Teamcenter Visualization V14.2 OOB write in WRL parser (before 14.2.0.14) CVE-2024-45469 7.8 - High - October 08, 2024

OOB Write via WRL parsing in Teamcenter/Tecnomatix <1.3.0.14 (CVE-2024-45470) CVE-2024-45470 7.8 - High - October 08, 2024

Teamcenter Visualization Pervasive OOB Write in WRL Files (V14.2<14) CVE-2024-45471 7.8 - High - October 08, 2024

MemCorruption in Teamcenter Viz & Tecnomatix PlantSim WRL Parser <v14.3,<v2404 CVE-2024-45473 7.8 - High - October 08, 2024

MemCorrupt in Teamcenter Vis <14.2.0.14 via WRLParser CVE-2024-45474 7.8 - High - October 08, 2024

Memory Corruption in Siemens Teamcenter Visualization V<14.2.0.14 via WRL CVE-2024-45475 7.8 - High - October 08, 2024

Teamcenter Viz Null Pointer Deref (<V14.2.0.14) via WRL DoS CVE-2024-45476 3.3 - Low - October 08, 2024

DoS via Null Ptr Deref in JT Open & Teamcenter Visualization < Specified V. CVE-2024-37996 - July 09, 2024

Stack-based overflow in Teamcenter Visualization XML parser (<V14.2.0.13) CVE-2024-37997 - July 09, 2024

OOB Read in JT2Go & Teamcenter Visualization <V2312.0005 CVE-2024-32635 - May 14, 2024

Teamcenter Vis & JT2Go NPE DoS via X_T file (V<14.2.0.12/14.3.0.10/2312.0005) CVE-2024-32637 - May 14, 2024

Teamcenter Visualiz. Stack Overflow via XML (V14.x, V2312) CVE-2024-34085 - May 14, 2024

OTB Write in Siemens Teamcenter Visualization (<V14.1.0.13 / <V14.2.0.10 / <V14.3.0.7 / <V2312.0001) CVE-2024-34086 - May 14, 2024

OOB Read in JT2Go & Teamcenter Vis ( V14.3.0.6) CVE-2023-51439 7.8 - High - January 09, 2024

Teamcenter Visualization JT2Go NullPtr Deref DoS in CGM Parser <14.3.0.6 CVE-2023-51744 5.5 - Medium - January 09, 2024

Teamcenter Vis Stack Overflow in CGM Parsing (V<14.3.0.6) CVE-2023-51745 7.8 - High - January 09, 2024

Teamcenter Visualization <14.3.0.6 stack overflow via CGM CVE-2023-51746 7.8 - High - January 09, 2024

Datalogics APDFL lib memory corruption in PDF parsing CVE-2021-38405 7.8 - High - November 21, 2023

Stack Buffer Overflow in Teamcenter Vis WRL Parser (before V13.3.0.12) CVE-2023-38070 7.8 - High - September 12, 2023

JT2Go & Teamcenter Vis: Heap Buffer Overflow (WRL) Pre-V14.3.0.1 CVE-2023-38071 7.8 - High - September 12, 2023

CVE-2023-38072: OOB write in JT2Go/Teamcenter Viz <V14.3, Tecnomatix PS<V2302 via WRL CVE-2023-38072 7.8 - High - September 12, 2023

SIEMENS Teamcenter Visual <V13.3.0.12: WRL Type Confusion CVE-2023-38073 7.8 - High - September 12, 2023

WRL Parsing Type Confusion Enables Code Exec in JT2Go, Teamcenter & Tecnomatix CVE-2023-38074 7.8 - High - September 12, 2023

Use-after-free in Teamcenter Visualization via WRL files (<14.3.0.1) CVE-2023-38075 7.8 - High - September 12, 2023

Heap buffer overflow in Siemens Teamcenter Vis <13.3.0.12 parsing WRL files CVE-2023-38076 7.8 - High - September 12, 2023

Parasolid/Teamcenter Viz NPD Exec pre v34.1.258, 35.0.254, 35.1.171, 14.1.0.11, 14.2.0.6, 14.3.0.3 CVE-2023-38524 7.8 - High - August 08, 2023

Parasolid DOS via Stack Exhaustion (V34.1 < 258, V35.0 < 254, V35.1 < 171) CVE-2023-38532 5.5 - Medium - August 08, 2023

Out-of-Bounds Read in Parasolid V34/35 & Teamcenter Viz <=14.3 CVE-2023-38531 7.8 - High - August 08, 2023

Parasolid 34.1/35.x OOB Read (X_T Files) CVE-2023-38530 CVE-2023-38530 7.8 - High - August 08, 2023

Parasolid & Teamcenter Visual. OOB write via X_T file (pre V35.1.197, V14.2.0.6) CVE-2023-38528 7.8 - High - August 08, 2023

Parasolid & Teamcenter OOB Read in X_T Files before V34.1.258 & V35.0.254 CVE-2023-38527 7.8 - High - August 08, 2023

OOB Read CVE-2023-38526 in Parasolid V34.1/V35.1 and Teamcenter Vis V14.x CVE-2023-38526 7.8 - High - August 08, 2023

Parasolid/Teamcenter OOB CVE-2023-38525 (V34.1/V35/V35.1/V14.1/14.2/14.3) CVE-2023-38525 7.8 - High - August 08, 2023

UEF in Siemens JT2Go/Teamcenter Vis. (<V14.2.0.5) via ASM parse RCE CVE-2023-28830 7.8 - High - August 08, 2023

JT2Go & Teamcenter Viz <V14.2.0.5: OOB Read in TIFF Parsing Code Exec CVE-2023-38682 7.8 - High - August 08, 2023

Parasolid/Teamcenter Viz OOB Read in X_T Files (pre 34.1.258/35.0.254/35.1.184) CVE-2023-38529 7.8 - High - August 08, 2023

Stay on top of Security Vulnerabilities

Siemens Vendor

Siemens Teamcenter VisualizationProduct

Teamcenter Visualz: OOB Read in WRL Parsing (<V14.3.0.14)
CVE-2025-32454 7.8 - High - May 13, 2025

OOB Write in Teamcenter/Tecnomatix - WRL parsing vulnerability
CVE-2025-23396 7.8 - High - March 11, 2025

Memory Corruption CVE-2025-23397 in Teamcenter Visualization <v14.3.0.13
CVE-2025-23397 7.8 - High - March 11, 2025

Teamcenter Visual & Tecnomatix PS Memory Corruption in WRL Parsing
CVE-2025-23398 7.8 - High - March 11, 2025

Memory Corruption in Siemens Teamcenter Visualiz. <V14.3.0.13 (WRL)
CVE-2025-23400 7.8 - High - March 11, 2025

Teamcenter Viz & Tecnomatix Plant Sim OOB Read in WRL < V14.3.0.13 etc.
CVE-2025-23401 7.8 - High - March 11, 2025

Teamcenter Visualization OOB Read <v14.3.0.13 Allows Code Exec via WRL
CVE-2025-27438 7.8 - High - March 11, 2025

Teamcenter Visualization and Tecnomatix Plant Simulation Stack-Based Buffer Overflow Vulnerability i
CVE-2024-53041 7.8 - High - December 10, 2024

Teamcenter Visualization and Tecnomatix Plant Simulation Out-of-Bounds Read Vulnerability in WRL Fil
CVE-2024-53242 7.8 - High - December 10, 2024

Siemens Teamcenter Viz <V14.2.0.14 OOB Read via WRL
CVE-2024-45463 7.8 - High - October 08, 2024

OOB Read in Siemens Teamcenter Visualization WRL Parser Code Exec
CVE-2024-45464 7.8 - High - October 08, 2024

Teamcenter Viz OOR in WRL Parser (V<14.2.0.14)
CVE-2024-45465 7.8 - High - October 08, 2024

OOB Read in Teamcenter Viz & Tecnomatix Sim via crafted WRL
CVE-2024-45466 7.8 - High - October 08, 2024

Teamcenter Visualization < v14.2.0.14 memory corruption via WRL files
CVE-2024-45468 7.8 - High - October 08, 2024

Teamcenter Visualization V14.2 OOB write in WRL parser (before 14.2.0.14)
CVE-2024-45469 7.8 - High - October 08, 2024

OOB Write via WRL parsing in Teamcenter/Tecnomatix <1.3.0.14 (CVE-2024-45470)
CVE-2024-45470 7.8 - High - October 08, 2024

Teamcenter Visualization Pervasive OOB Write in WRL Files (V14.2<14)
CVE-2024-45471 7.8 - High - October 08, 2024

MemCorruption in Teamcenter Viz & Tecnomatix PlantSim WRL Parser <v14.3,<v2404
CVE-2024-45473 7.8 - High - October 08, 2024

MemCorrupt in Teamcenter Vis <14.2.0.14 via WRLParser
CVE-2024-45474 7.8 - High - October 08, 2024

Memory Corruption in Siemens Teamcenter Visualization V<14.2.0.14 via WRL
CVE-2024-45475 7.8 - High - October 08, 2024

Teamcenter Viz Null Pointer Deref (<V14.2.0.14) via WRL DoS
CVE-2024-45476 3.3 - Low - October 08, 2024

DoS via Null Ptr Deref in JT Open & Teamcenter Visualization < Specified V.
CVE-2024-37996 - July 09, 2024

Stack-based overflow in Teamcenter Visualization XML parser (<V14.2.0.13)
CVE-2024-37997 - July 09, 2024

OOB Read in JT2Go & Teamcenter Visualization <V2312.0005
CVE-2024-32635 - May 14, 2024

Teamcenter Vis & JT2Go NPE DoS via X_T file (V<14.2.0.12/14.3.0.10/2312.0005)
CVE-2024-32637 - May 14, 2024

Teamcenter Visualiz. Stack Overflow via XML (V14.x, V2312)
CVE-2024-34085 - May 14, 2024

OTB Write in Siemens Teamcenter Visualization (<V14.1.0.13 / <V14.2.0.10 / <V14.3.0.7 / <V2312.0001)
CVE-2024-34086 - May 14, 2024

OOB Read in JT2Go & Teamcenter Vis ( V14.3.0.6)
CVE-2023-51439 7.8 - High - January 09, 2024

Teamcenter Visualization JT2Go NullPtr Deref DoS in CGM Parser <14.3.0.6
CVE-2023-51744 5.5 - Medium - January 09, 2024

Teamcenter Vis Stack Overflow in CGM Parsing (V<14.3.0.6)
CVE-2023-51745 7.8 - High - January 09, 2024

Teamcenter Visualization <14.3.0.6 stack overflow via CGM
CVE-2023-51746 7.8 - High - January 09, 2024

Datalogics APDFL lib memory corruption in PDF parsing
CVE-2021-38405 7.8 - High - November 21, 2023

Stack Buffer Overflow in Teamcenter Vis WRL Parser (before V13.3.0.12)
CVE-2023-38070 7.8 - High - September 12, 2023

JT2Go & Teamcenter Vis: Heap Buffer Overflow (WRL) Pre-V14.3.0.1
CVE-2023-38071 7.8 - High - September 12, 2023

CVE-2023-38072: OOB write in JT2Go/Teamcenter Viz <V14.3, Tecnomatix PS<V2302 via WRL
CVE-2023-38072 7.8 - High - September 12, 2023

SIEMENS Teamcenter Visual <V13.3.0.12: WRL Type Confusion
CVE-2023-38073 7.8 - High - September 12, 2023

WRL Parsing Type Confusion Enables Code Exec in JT2Go, Teamcenter & Tecnomatix
CVE-2023-38074 7.8 - High - September 12, 2023

Use-after-free in Teamcenter Visualization via WRL files (<14.3.0.1)
CVE-2023-38075 7.8 - High - September 12, 2023

Heap buffer overflow in Siemens Teamcenter Vis <13.3.0.12 parsing WRL files
CVE-2023-38076 7.8 - High - September 12, 2023

Parasolid/Teamcenter Viz NPD Exec pre v34.1.258, 35.0.254, 35.1.171, 14.1.0.11, 14.2.0.6, 14.3.0.3
CVE-2023-38524 7.8 - High - August 08, 2023

Parasolid DOS via Stack Exhaustion (V34.1 < 258, V35.0 < 254, V35.1 < 171)
CVE-2023-38532 5.5 - Medium - August 08, 2023

Out-of-Bounds Read in Parasolid V34/35 & Teamcenter Viz <=14.3
CVE-2023-38531 7.8 - High - August 08, 2023

Parasolid 34.1/35.x OOB Read (X_T Files) CVE-2023-38530
CVE-2023-38530 7.8 - High - August 08, 2023

Parasolid & Teamcenter Visual. OOB write via X_T file (pre V35.1.197, V14.2.0.6)
CVE-2023-38528 7.8 - High - August 08, 2023

Parasolid & Teamcenter OOB Read in X_T Files before V34.1.258 & V35.0.254
CVE-2023-38527 7.8 - High - August 08, 2023

OOB Read CVE-2023-38526 in Parasolid V34.1/V35.1 and Teamcenter Vis V14.x
CVE-2023-38526 7.8 - High - August 08, 2023

Parasolid/Teamcenter OOB CVE-2023-38525 (V34.1/V35/V35.1/V14.1/14.2/14.3)
CVE-2023-38525 7.8 - High - August 08, 2023

UEF in Siemens JT2Go/Teamcenter Vis. (<V14.2.0.5) via ASM parse RCE
CVE-2023-28830 7.8 - High - August 08, 2023

JT2Go & Teamcenter Viz <V14.2.0.5: OOB Read in TIFF Parsing Code Exec
CVE-2023-38682 7.8 - High - August 08, 2023

Parasolid/Teamcenter Viz OOB Read in X_T Files (pre 34.1.258/35.0.254/35.1.184)
CVE-2023-38529 7.8 - High - August 08, 2023

Siemens
Vendor

Siemens Teamcenter Visualization
Product