Out of Bounds Write Vulnerability in Siemens Teamcenter and Tecnomatix Products
CVE-2024-52571
7.8HIGH
Key Information:
- Vendor
- Siemens
- Status
- Vendor
- CVE Published:
- 18 November 2024
Summary
A vulnerability exists in multiple versions of Siemens' Teamcenter Visualization and Tecnomatix Plant Simulation products. Specifically, an out of bounds write issue is triggered when the applications parse specially crafted WRL files. This flaw potentially enables attackers to execute arbitrary code within the context of the affected process. Various affected product versions include older iterations, emphasizing the necessity for users to promptly update to mitigate any associated risks.
Affected Version(s)
Teamcenter Visualization V14.2 0
Teamcenter Visualization V14.3 0
Teamcenter Visualization V2312 0
References
CVSS V3.1
Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published