Out of Bounds Read Vulnerability in Siemens Teamcenter and Tecnomatix Products
CVE-2024-52574
7.8HIGH
Key Information:
- Vendor
- Siemens
- Status
- Vendor
- CVE Published:
- 18 November 2024
Summary
A vulnerability has been identified in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation products, which involves an out of bounds read occurring past the end of an allocated structure when parsing specially crafted WRL files. This vulnerability could enable an attacker to execute code within the context of the affected application, posing significant security risks to users. It is crucial for organizations using these products to apply relevant patches and updates to mitigate potential exploitation.
Affected Version(s)
Teamcenter Visualization V14.2 0
Teamcenter Visualization V14.3 0
Teamcenter Visualization V2312 0
References
CVSS V3.1
Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published