CVE-2023-43625

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 10, 2023

Updated: Oct 13, 2023

CWE ID 94

Summary

CVE-2023-43625 is a newly identified vulnerability affecting Simcenter Amesim versions prior to V2021.1. This issue involves a SOAP endpoint in the application, which can be exploited by unauthenticated remote attackers. By successfully exploiting this vulnerability, attackers can perform DLL injection, allowing them to execute arbitrary code within the context of the affected application process. This poses a significant security risk and requires immediate attention from users to update to a patched version of Simcenter Amesim.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/svYFRZ
https://www.cve.org/CVERecord?id=CVE-2023-43625
https://nvd.nist.gov/vuln/detail/CVE-2023-43625

Back to Vulnerability Database

CVE-2023-43625

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations