CVE-2023-41032

Name of the Vulnerable Software and Affected Versions Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.253 Parasolid versions prior to V35.1.184 Parasolid versions prior to V36.0.142 Simcenter Femap versions prior to V2301.0003 Simcenter Femap versions prior to V2306.0001

Description The affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted X T files. This could allow an attacker to execute code in the context of the current process. The vulnerability is related to a buffer overflow in memory, which can be exploited by an attacker using specially crafted files.

Recommendations For Parasolid versions prior to V34.1.258, update to version V34.1.258 or later. For Parasolid versions prior to V35.0.253, update to version V35.0.253 or later. For Parasolid versions prior to V35.1.184, update to version V35.1.184 or later. For Parasolid versions prior to V36.0.142, update to version V36.0.142 or later. For Simcenter Femap versions prior to V2301.0003, update to version V2301.0003 or later. For Simcenter Femap versions prior to V2306.0001, update to version V2306.0001 or later. As a temporary workaround, consider restricting the use of X T files until a patch is available. Avoid using specially crafted X T files to minimize the risk of exploitation.