CVE-2024-53041

Name of the Vulnerable Software and Affected Versions Tecnomatix Plant Simulation versions prior to V2302.0016 Tecnomatix Plant Simulation versions prior to V2404.0005 Teamcenter Visualization versions prior to V14.2.0.14 Teamcenter Visualization versions prior to V14.3.0.12 Teamcenter Visualization versions prior to V2312.0008

Description The issue is related to a stack-based buffer overflow vulnerability when parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process, potentially leading to remote code execution. The vulnerability is associated with the processing of WRL files in the affected applications.

Recommendations For Tecnomatix Plant Simulation versions prior to V2302.0016, update to version V2302.0016 or later. For Tecnomatix Plant Simulation versions prior to V2404.0005, update to version V2404.0005 or later. For Teamcenter Visualization versions prior to V14.2.0.14, update to version V14.2.0.14 or later. For Teamcenter Visualization versions prior to V14.3.0.12, update to version V14.3.0.12 or later. For Teamcenter Visualization versions prior to V2312.0008, update to version V2312.0008 or later. As a temporary workaround, consider restricting access to WRL files or disabling the WRL file parsing functionality until a patch is available.