Publication Date: 2022-05-10
Last Update: 2022-06-14
Current Version: V1.1
CVSS v3.1 Base Score: 7.8

Affected Product and Versions Remediation
Teamcenter V12.4:
All versions < V12.4.0.13
Update to V12.4.0.13 or later version
https://support.sw.siemens.com/
See further recommendations from section Workarounds and Mitigations
Teamcenter V13.0:
All versions < V13.0.0.9
Update to V13.0.0.9 or later version
https://support.sw.siemens.com/
See further recommendations from section Workarounds and Mitigations
Teamcenter V13.1:
All versions
only affected by CVE-2022-24290
Update to V13.1.0.9 or later version
https://support.sw.siemens.com/
See further recommendations from section Workarounds and Mitigations
Teamcenter V13.2:
All versions < V13.2.0.8
only affected by CVE-2022-24290
Update to V13.2.0.8 or later version
https://support.sw.siemens.com/
See further recommendations from section Workarounds and Mitigations
Teamcenter V13.3:
All versions < V13.3.0.3
only affected by CVE-2022-24290
Update to V13.3.0.3 or later version
https://support.sw.siemens.com/
See further recommendations from section Workarounds and Mitigations
Teamcenter V14.0:
All versions
only affected by CVE-2022-24290
Currently no fix is available
See recommendations from section Workarounds and Mitigations

CVSS v3.1 Base Score 7.8
CVSS Vector CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
CWE: CWE-121: Stack-based Buffer Overflow

CVSS v3.1 Base Score 5.3
CVSS Vector CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C
CWE: CWE-611: Improper Restriction of XML External Entity Reference

https://www.siemens.com/cert/advisories