CVE-2023-37247

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 11, 2023

Updated: Jul 18, 2023

CWE ID 787

CWE ID 122

Summary

CVE-2023-37247 is a newly disclosed vulnerability affecting Tecnomatix Plant Simulation V2201 (prior to V2201.0008) and V2302 (prior to V2302.0002). This application is susceptible to a heap-based buffer overflow, which occurs during the parsing of specially crafted PAR files. An attacker can exploit this vulnerability to execute arbitrary code in the context of the affected process, potentially leading to significant security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens Tecnomatix

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r1BwhD
https://www.cve.org/CVERecord?id=CVE-2023-37247
https://nvd.nist.gov/vuln/detail/CVE-2023-37247

Back to Vulnerability Database