CVE-2024-45476

Name of the Vulnerable Software and Affected Versions: Teamcenter Visualization versions prior to V14.2.0.14 Teamcenter Visualization versions prior to V14.3.0.12 Teamcenter Visualization versions prior to V2312.0008 Tecnomatix Plant Simulation versions prior to V2302.0016 Tecnomatix Plant Simulation versions prior to V2404.0005

Description: A null pointer dereference vulnerability has been identified in the affected applications while parsing specially crafted WRL files. This issue can be leveraged by an attacker to crash the application, causing a denial of service condition. The vulnerability is related to errors in pointer dereference when processing WRL files, which can allow an attacker to cause a service disruption.

Recommendations: For Teamcenter Visualization versions prior to V14.2.0.14, update to version V14.2.0.14 or later. For Teamcenter Visualization versions prior to V14.3.0.12, update to version V14.3.0.12 or later. For Teamcenter Visualization versions prior to V2312.0008, update to version V2312.0008 or later. For Tecnomatix Plant Simulation versions prior to V2302.0016, update to version V2302.0016 or later. For Tecnomatix Plant Simulation versions prior to V2404.0005, update to version V2404.0005 or later.