Out of Bounds Write Vulnerability in Simcenter Femap by Siemens
CVE-2024-32056

7.3HIGH

Key Information:

Vendor: Siemens
Status: Simcenter Femap
Vendor: CVE Published:; 9 July 2024

What is CVE-2024-32056?

An identified vulnerability in Simcenter Femap involves an out of bounds write condition that occurs while processing specially crafted IGS part files. This flaw permits an attacker to overwrite memory beyond allocated buffers, which may lead to remote code execution within the context of the application. As a result, it poses significant risks to users operating versions prior to V2406, necessitating prompt attention and remediation.

Affected Version(s)

Simcenter Femap 0

References

https://cert-portal.siemens.com/productcert/html/ssa-0642...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 9, 2024