CVE-2024-23798: 
Siemens Tecnomatix Plant Simulation vulnerability analysis and mitigation

A stack overflow vulnerability (CVE-2024-23798) has been identified in Siemens Tecnomatix Plant Simulation V2201 (All versions < V2201.0012) and V2302 (All versions < V2302.0006). The vulnerability affects the parsing of WRL files in the application (CISA, Siemens Advisory).

The vulnerability is classified as a stack-based buffer overflow (CWE-121) that occurs during the parsing of specially crafted WRL files. It has been assigned a CVSS v3.1 base score of 7.8 (CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) and a CVSS v4.0 base score of 7.3 (CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N) (ZDI, CISA).

If successfully exploited, this vulnerability could allow an attacker to execute arbitrary code in the context of the current process. The attack requires user interaction, specifically opening a malicious file (ZDI, Siemens Advisory).

Siemens has released updates to address this vulnerability. Users of Tecnomatix Plant Simulation V2201 should update to V2201.0012 or later version, while users of V2302 should update to V2302.0006 or later version. Additionally, Siemens recommends not opening untrusted WRL files using Tecnomatix Plant Simulation (Siemens Advisory, CISA).