CVE-2022-29801 is a vulnerability in Siemens Teamcenter
Published on May 20, 2022
A vulnerability has been identified in Teamcenter V12.4 (All versions < V12.4.0.13), Teamcenter V13.0 (All versions < V13.0.0.9). The application contains a XML External Entity Injection (XXE) vulnerability. This could allow an attacker to view files on the application server filesystem.
Weakness Type
What is a XXE Vulnerability?
The software processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.
CVE-2022-29801 has been classified to as a XXE vulnerability or weakness.
Products Associated with CVE-2022-29801
Want to know whenever a new CVE is published for Siemens Teamcenter? stack.watch will email you.
Affected Versions
Siemens Teamcenter V12.4:- Version All versions < V12.4.0.13 is affected.
- Version All versions < V13.0.0.9 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.