How severe is CVE-2024-37996?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 3.3 out of 10.

What type of vulnerability is CVE-2024-37996?

This is classified as CWE-476, which is a common weakness in software security.

CVE-2024-37996 - MEDIUM Severity | CVSS 3.3

Vulnerability Description

A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (All versions < V14.3.0.11), Teamcenter Visualization V2312 (All versions < V2312.0008), Teamcenter Visualization V2406 (All versions < V2406.0003). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted XML files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

Related Vulnerabilities

CVE-2017-15096

LOW

CVSS:3.3(Low)

A flaw was found in GlusterFS in versions prior to 3.10. A null pointer dereference in send_brick_req function in glusterfsd/src/gf_attach.c may be used to cause denial of service.

CWE-4762017

CVE-2017-17294

LOW

CVSS:3.3(Low)

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, ...

CWE-4762017

CVE-2021-4217

LOW

CVSS:3.3(Low)

A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to input a specially crafted...

CWE-4762021

CVE-2022-1249

LOW

CVSS:3.3(Low)

A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the cms_common.c file. The function fails to handle the NULL pwdata invocation from daemon.c, which leads to an expl...

CWE-4762022

CVE-2023-0196

LOW

CVSS:3.3(Low)

NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local user running the tool against an ill-formed binary may cause a null- pointer dereference, which may result in a limited denial of ser...

CWE-4762023

CVE-2023-25510

LOW

CVSS:3.3(Low)

NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump, where a local user running the tool against a malformed binary may cause a limited denial of service.

CWE-4762023