CVE-2024-23804: 
Siemens Tecnomatix Plant Simulation vulnerability analysis and mitigation

CVE-2024-23804 is a stack overflow vulnerability affecting Siemens Tecnomatix Plant Simulation software, specifically versions V2201 (all versions < V2201.0012) and V2302 (all versions < V2302.0006). The vulnerability was discovered in the application's parsing functionality for PSOBJ files (CISA Advisory, Siemens Advisory).

The vulnerability is classified as a stack-based buffer overflow (CWE-121) that occurs when parsing specially crafted PSOBJ files. It has been assigned a CVSS v3.1 base score of 7.8 (High) with vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, and a CVSS v4.0 base score of 7.3 with vector string CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N (CISA Advisory).

If successfully exploited, this vulnerability could allow an attacker to execute arbitrary code in the context of the current process when a user is tricked into opening a malicious PSOBJ file (Siemens Advisory).

Siemens has released updates to address this vulnerability and recommends users to update Tecnomatix Plant Simulation V2201 to version V2201.0012 or later, and V2302 to version V2302.0006 or later. Additionally, users are advised not to open untrusted PSOBJ files using Tecnomatix Plant Simulation (CISA Advisory, Siemens Advisory).