CVE-2023-44082

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 10, 2023

Updated: Oct 12, 2023

CWE ID 787

Summary

CVE-2023-44082 is a newly discovered vulnerability affecting Tecnomatix Plant Simulation V2201 (versions below V2201.0009) and Tecnomatix Plant Simulation V2302 (versions below V2302.0003). The issue stems from an out-of-bounds write occurrence in the application while processing a maliciously crafted SPP file. This vulnerability potentially allows an attacker to inject and execute arbitrary code within the application, exploiting it in the context of the current process.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens Tecnomatix

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/syZecL
https://www.cve.org/CVERecord?id=CVE-2023-44082
https://nvd.nist.gov/vuln/detail/CVE-2023-44082

Back to Vulnerability Database