Tecnomatix Plant Simulation Vulnerability Leads to Denial of Service
CVE-2024-45476
3.3LOW
Key Information
- Vendor
- Siemens
- Status
- Teamcenter Visualization V14.2
- Teamcenter Visualization V14.3
- Teamcenter Visualization V2312
- Tecnomatix Plant Simulation V2302
- Vendor
- CVE Published:
- 8 October 2024
Summary
A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted WRL files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.
Affected Version(s)
Teamcenter Visualization V14.2 < 0
Teamcenter Visualization V14.3 < 0
Teamcenter Visualization V2312 < 0
Refferences
CVSS V3.1
Score:
3.3
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database