CVE-2023-37376

Name of the Vulnerable Software and Affected Versions Tecnomatix Plant Simulation V2201 versions prior to V2201.0008 Tecnomatix Plant Simulation V2302 versions prior to V2302.0002

Description A type confusion vulnerability has been identified in the affected application while parsing STP files. This could allow an attacker to execute code in the context of the current process.

Recommendations For Tecnomatix Plant Simulation V2201 versions prior to V2201.0008, update to version V2201.0008 or later. For Tecnomatix Plant Simulation V2302 versions prior to V2302.0002, update to version V2302.0002 or later. As a temporary workaround, consider restricting access to STP files until a patch is applied.