CVE-2021-27396

Name of the Vulnerable Software and Affected Versions Tecnomatix Plant Simulation versions prior to V16.0.5

Description A vulnerability has been identified in the PlantSimCore.dll library, which lacks proper validation of user-supplied data when parsing SPP files. This could result in a stack-based buffer overflow, allowing an attacker to execute code in the context of the current process.

Recommendations For versions prior to V16.0.5, update to version V16.0.5 or later to resolve the issue. As a temporary workaround, consider restricting access to SPP files to minimize the risk of exploitation.