CVE-2024-23796: 
Siemens Tecnomatix Plant Simulation vulnerability analysis and mitigation

A heap-based buffer overflow vulnerability (CVE-2024-23796) has been identified in Siemens Tecnomatix Plant Simulation V2201 (All versions < V2201.0012) and Tecnomatix Plant Simulation V2302 (All versions < V2302.0006). The vulnerability was discovered in the parsing of WRL files and was disclosed on February 13, 2024. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 and a CVSS v4.0 base score of 7.3 (CISA Advisory, Siemens Advisory).

The vulnerability exists within the parsing of WRL files, resulting from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. The issue is tracked as CWE-122: Heap-based Buffer Overflow. The CVSS v3.1 vector string is (CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H), indicating local access, low attack complexity, no privileges required, and user interaction required (ZDI Advisory, CISA Advisory).

If successfully exploited, this vulnerability could allow an attacker to execute arbitrary code in the context of the current process. The vulnerability requires user interaction to exploit, specifically requiring the target to open a malicious file (ZDI Advisory, CISA Advisory).

Siemens has released updates to address this vulnerability. Users of Tecnomatix Plant Simulation V2201 should update to V2201.0012 or later version, while users of V2302 should update to V2302.0006 or later version. Additionally, Siemens recommends not opening untrusted WRL files using Tecnomatix Plant Simulation. As a general security measure, network access to devices should be protected with appropriate mechanisms (Siemens Advisory, CISA Advisory).