CVE-2023-44085

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 10, 2023

Updated: Oct 12, 2023

CWE ID 125

Summary

CVE-2023-44085 is a newly discovered vulnerability affecting Tecnomatix Plant Simulation V2201 (versions below V2201.0009) and Tecnomatix Plant Simulation V2302 (versions below V2302.0003). The issue stems from an out-of-bounds read error in these applications while processing specifically crafted SPP files. This flaw enables an attacker to read beyond the allocated structure, potentially gaining the ability to execute arbitrary code within the affected process.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens Tecnomatix

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/syZfq8
https://www.cve.org/CVERecord?id=CVE-2023-44085
https://nvd.nist.gov/vuln/detail/CVE-2023-44085

Back to Vulnerability Database