PT-2024-7985 · Siemens · Simcenter Nastran+1
Michael Heinzl
·
Published
2024-10-08
·
Updated
2025-10-15
·
CVE-2024-47046
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Simcenter Femap versions V2306 through V2406
Simcenter Nastran versions 2306 through 2312
Description
The issue is related to a memory corruption vulnerability while parsing specially crafted BDF files, which could allow an attacker to execute code in the context of the current process. This is due to the use of memory after it has been freed.
Recommendations
For Simcenter Femap versions V2306 through V2406, update to a version that includes the fix for the memory corruption issue.
For Simcenter Nastran versions 2306 through 2312, update to a version that includes the fix for the memory corruption issue.
As a temporary workaround, consider restricting the use of the BDF File Handler component until a patch is available.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Simcenter Femap
Simcenter Nastran