CVE-2024-32057Type Confusion in Siemens Simcenter Femap

CWE-843Type Confusion3 documents3 sources
Severity
7.3HIGHNVD
EPSS
0.1%
top 68.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Siemens Simcenter FemapSiemens PS Iges Parasolid Translator
Timeline
PublishedMay 14

Description

A vulnerability has been identified in Simcenter Femap (All versions < V2406). The affected application contains a type confusion vulnerability while parsing IGS files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-21562)

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

CVEListV5siemens/simcenter_femap< V2406
NVDsiemens/simcenter_femap< 2406.0000

🔴Vulnerability Details

2
CVEList
CVE-2024-32057: A vulnerability has been identified in Simcenter Femap (All versions < V2406)2024-05-14
GHSA
GHSA-xxjv-vh49-qq33: A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V272024-05-14
CVE-2024-32057 — Type Confusion in Siemens | cvebase