CVE-2023-41032
Siemens Simcenter Femap X_T File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.253), Parasolid V35.1 (All versions < V35.1.184), Parasolid V36.0 (All versions < V36.0.142), Simcenter Femap V2301 (All versions < V2301.0003), Simcenter Femap V2306 (All versions < V2306.0001). The affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-21263)
Se ha identificado una vulnerabilidad en Parasolid V34.1 (todas las versiones < V34.1.258), Parasolid V35.0 (todas las versiones < V35.0.253), Parasolid V35.1 (todas las versiones < V35.1.184), Parasolid V36.0 (todas las versiones < V36.0.142). La aplicación afectada contiene una escritura fuera de los límites más allá del final de una estructura asignada mientras analiza archivos X_T especialmente manipulados. Esto podría permitir a un atacante ejecutar código en el contexto del proceso actual. (ZDI-CAN-21263)
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of X_T files. The issue results from the lack of proper validation of user-supplied data, which can result in a write before the start of an allocated data structure. An attacker can leverage this vulnerability to execute code in the context of the current process.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-08-22 CVE Reserved
- 2023-09-12 CVE Published
- 2024-02-08 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://www.bentley.com/advisories/be-2023-0004 | Third Party Advisory |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-190839.pdf | 2024-02-16 | |
| https://cert-portal.siemens.com/productcert/pdf/ssa-887122.pdf | 2024-02-16 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | Parasolid Search vendor "Siemens" for product "Parasolid" | >= 34.1 < 34.1.258 Search vendor "Siemens" for product "Parasolid" and version " >= 34.1 < 34.1.258" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Parasolid Search vendor "Siemens" for product "Parasolid" | >= 35.0 < 35.0.253 Search vendor "Siemens" for product "Parasolid" and version " >= 35.0 < 35.0.253" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Parasolid Search vendor "Siemens" for product "Parasolid" | >= 35.1 < 35.1.184 Search vendor "Siemens" for product "Parasolid" and version " >= 35.1 < 35.1.184" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Parasolid Search vendor "Siemens" for product "Parasolid" | >= 36.0 < 36.0.142 Search vendor "Siemens" for product "Parasolid" and version " >= 36.0 < 36.0.142" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Simcenter Femap Search vendor "Siemens" for product "Simcenter Femap" | >= 2301.0 < 2301.0003 Search vendor "Siemens" for product "Simcenter Femap" and version " >= 2301.0 < 2301.0003" | - |
Affected
| ||||||
| Siemens Search vendor "Siemens" | Simcenter Femap Search vendor "Siemens" for product "Simcenter Femap" | >= 2306.0 < 2306.0001 Search vendor "Siemens" for product "Simcenter Femap" and version " >= 2306.0 < 2306.0001" | - |
Affected
| ||||||