Out of Bounds Write Vulnerability in Simcenter Femap by Siemens
CVE-2024-32056

7.8HIGH

Key Information:

Vendor: Siemens
Status: Simcenter Femap
Vendor: CVE Published:; 9 July 2024

Summary

An identified vulnerability in Simcenter Femap involves an out of bounds write condition that occurs while processing specially crafted IGS part files. This flaw permits an attacker to overwrite memory beyond allocated buffers, which may lead to remote code execution within the context of the application. As a result, it poses significant risks to users operating versions prior to V2406, necessitating prompt attention and remediation.

Affected Version(s)

Simcenter Femap 0

References

https://cert-portal.siemens.com/productcert/html/ssa-0642...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jul 9, 2024