CVE-2024-33577Stack-based Buffer Overflow in Siemens Simcenter Femap

CWE-121Stack-based Buffer Overflow3 documents3 sources
Severity
7.3HIGHNVD
EPSS
0.1%
top 71.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Siemens Simcenter FemapSiemens Simcenter Nastran
Timeline
PublishedMay 14

Description

A vulnerability has been identified in Simcenter Femap (All versions < V2406). The affected applications contain a stack overflow vulnerability while parsing specially strings as argument for one of the application binaries. This could allow an attacker to execute code in the context of the current process.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

CVEListV5siemens/simcenter_femap< V2406
NVDsiemens/simcenter_femap< 2406.0000
NVDsiemens/simcenter_nastran2306.02406.90

🔴Vulnerability Details

2
GHSA
GHSA-xxf2-xrv7-r2gj: A vulnerability has been identified in Simcenter Nastran 2306 (All versions), Simcenter Nastran 2312 (All versions), Simcenter Nastran 2406 (All versi2024-05-14
CVEList
CVE-2024-33577: A vulnerability has been identified in Simcenter Femap (All versions < V2406)2024-05-14
CVE-2024-33577 — Stack-based Buffer Overflow in Siemens | cvebase