CVE-2024-24924

Name of the Vulnerable Software and Affected Versions Simcenter Femap versions prior to V2306.0000

Description A vulnerability has been identified in Simcenter Femap that allows an attacker to execute code in the context of the current process. The issue is related to an out of bounds write past the end of an allocated buffer while parsing a specially crafted Catia MODEL file. This could enable an attacker to execute arbitrary code.

Recommendations For versions prior to V2306.0000, update to version V2306.0000 or later to resolve the issue. As a temporary workaround, consider restricting the use of Catia MODEL files until a patch is applied. Avoid using specially crafted Catia MODEL files in the affected application to minimize the risk of exploitation.