cve/2024/CVE-2024-26277.md

### [CVE-2024-26277](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26277)
![](https://img.shields.io/static/v1?label=Product&message=JT2Go&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Parasolid%20V35.1&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Parasolid%20V36.0&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Parasolid%20V36.1&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Teamcenter%20Visualization%20V14.2&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Teamcenter%20Visualization%20V14.3&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Teamcenter%20Visualization%20V2312&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-476%3A%20NULL%20Pointer%20Dereference&color=brightgreen)

### Description

A vulnerability has been identified in JT2Go (All versions < V2312.0004), Parasolid V35.1 (All versions < V35.1.254), Parasolid V36.0 (All versions < V36.0.207), Parasolid V36.1 (All versions < V36.1.147), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.9), Teamcenter Visualization V2312 (All versions < V2312.0004). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted X_T files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/JsHuang/CVE-Assigned
Update CVE sources 2025-09-29 16:08 2025-09-29 16:08:36 +00:00			`### [CVE-2024-26277](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26277)`
			`![](https://img.shields.io/static/v1?label=Product&message=JT2Go&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Parasolid%20V35.1&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Parasolid%20V36.0&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Parasolid%20V36.1&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Teamcenter%20Visualization%20V14.2&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Teamcenter%20Visualization%20V14.3&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Teamcenter%20Visualization%20V2312&color=blue)`
Update CVE list 2025-09-29 21:09 2025-09-29 21:09:30 +02:00			`![](https://img.shields.io/static/v1?label=Version&message=0%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-476%3A%20NULL%20Pointer%20Dereference&color=brightgreen)`
Update CVE sources 2025-09-29 16:08 2025-09-29 16:08:36 +00:00
			`### Description`

			A vulnerability has been identified in JT2Go (All versions < V2312.0004), Parasolid V35.1 (All versions < V35.1.254), Parasolid V36.0 (All versions < V36.0.207), Parasolid V36.1 (All versions < V36.1.147), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.9), Teamcenter Visualization V2312 (All versions < V2312.0004). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted X_T files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/JsHuang/CVE-Assigned`