CVE-2024-23804

Name of the Vulnerable Software and Affected Versions Tecnomatix Plant Simulation V2201 versions prior to V2201.0012 Tecnomatix Plant Simulation V2302 versions prior to V2302.0006

Description A stack overflow vulnerability has been identified in the affected applications while parsing specially crafted PSOBJ files. This could allow an attacker to execute code in the context of the current process. The vulnerability is related to reading data beyond the buffer boundaries in memory, which can be exploited by loading specially formed PSOBJ files, potentially allowing an attacker to execute arbitrary code.

Recommendations For Tecnomatix Plant Simulation V2201 versions prior to V2201.0012, update to version V2201.0012 or later. For Tecnomatix Plant Simulation V2302 versions prior to V2302.0006, update to version V2302.0006 or later. As a temporary workaround, consider restricting the use of PSOBJ files until a patch is available. Avoid loading specially crafted PSOBJ files to minimize the risk of exploitation.