March 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – ICS: Advantech WebAccess/SCADA
June 18, 2021Rewterz Threat Advisory – CVE-2020-11978 – Apache Airflow Command Injection
June 18, 2021Rewterz Threat Advisory – ICS: Advantech WebAccess/SCADA
June 18, 2021Rewterz Threat Advisory – CVE-2020-11978 – Apache Airflow Command Injection
June 18, 2021
Severity
High
Analysis Summary
CVE-2021-27390
This Zero-Day vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TIFF files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Impact
- Remote Code Execution
Affected Vendors
Siemens
Affected Products
JT2Go: All versions < V13.1.0.3
Remediation
Refer to vendor advisory for the complete list of affected products and their respective patches at https://www.plm.automation.siemens.com/global/en/products/plm-components/jt2go.html