CVE-2025-23396

Name of the Vulnerable Software and Affected Versions Teamcenter Visualization versions prior to V14.3.0.13 Teamcenter Visualization versions prior to V2312.0009 Teamcenter Visualization versions prior to V2406.0007 Teamcenter Visualization versions prior to V2412.0002 Tecnomatix Plant Simulation versions prior to V2302.0021 Tecnomatix Plant Simulation versions prior to V2404.0010

Description A vulnerability has been identified in the affected applications, which contain an out of bounds write vulnerability when parsing a specially crafted WRL file. This could allow an attacker to execute code in the context of the current process. The issue is related to improper restriction of operations within the bounds of a memory buffer.

Recommendations For Teamcenter Visualization versions prior to V14.3.0.13, update to version V14.3.0.13 or later. For Teamcenter Visualization versions prior to V2312.0009, update to version V2312.0009 or later. For Teamcenter Visualization versions prior to V2406.0007, update to version V2406.0007 or later. For Teamcenter Visualization versions prior to V2412.0002, update to version V2412.0002 or later. For Tecnomatix Plant Simulation versions prior to V2302.0021, update to version V2302.0021 or later. For Tecnomatix Plant Simulation versions prior to V2404.0010, update to version V2404.0010 or later.