CVE-2023-38679

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 8, 2023

Updated: Aug 14, 2023

CWE ID 787

Summary

CVE-2023-38679 is a newly discovered vulnerability affecting Tecnomatix Plant Simulation V2201 versions prior to V2201.0008 and V2302 versions prior to V2302.0002. The issue resides in the application's parsing of a specially crafted SPP file, resulting in an out-of-bounds write. This vulnerability could potentially be exploited by an attacker to execute arbitrary code in the context of the current process.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens Tecnomatix

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sGUHQ9
https://www.cve.org/CVERecord?id=CVE-2023-38679
https://nvd.nist.gov/vuln/detail/CVE-2023-38679

Back to Vulnerability Database