Article - CS335039
Critical Security Vulnerability - Potential for exposure of sensitive information to an unauthorized actor
Modified: 18-Sep-2024
Applies To
- Pro/INTRALINK 8.x + 10.1 to 11.2
- Windchill PDM Essentials 10.1 to 11.1
- Windchill PDMLink 10.1 to 12.0
- Windchill ProjectLink 10.1 to 12.0
- PTC Arbortext Content Manager 10.1 to 12.0
- FlexPLM 10.1 to 11.2
Description
- CVSS 3.1 Score: 10.0
- CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
- A critical security vulnerability has been identified in Windchill Core
- This security vulnerability has the potential for the Windchill Core product to expose sensitive information to an actor that is not explicitly authorized to have access to that information
- Will a Standalone Patch for Windchill 11.0 M030 CPS18 be released by PTC?
- Note that PTC has no indication nor has been made aware that this vulnerability has or is being exploited
This is a printer-friendly version of Article 335039 and may be out of date. For the latest version click CS335039