PT-2024-10045 · Siemens · Teamcenter Visualization+1
Published
2024-10-08
·
Updated
2024-12-10
·
CVE-2024-45465
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Teamcenter Visualization versions prior to V14.2.0.14
Teamcenter Visualization versions prior to V14.3.0.12
Teamcenter Visualization versions prior to V2312.0008
Tecnomatix Plant Simulation versions prior to V2302.0016
Tecnomatix Plant Simulation versions prior to V2404.0005
Description
The issue is related to an out of bounds read in memory, which can be exploited by parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process.
Recommendations
For Teamcenter Visualization versions prior to V14.2.0.14, update to version V14.2.0.14 or later.
For Teamcenter Visualization versions prior to V14.3.0.12, update to version V14.3.0.12 or later.
For Teamcenter Visualization versions prior to V2312.0008, update to version V2312.0008 or later.
For Tecnomatix Plant Simulation versions prior to V2302.0016, update to version V2302.0016 or later.
For Tecnomatix Plant Simulation versions prior to V2404.0005, update to version V2404.0005 or later.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Teamcenter Visualization
Tecnomatix Plant Simulation