CVE-2024-45474: 
Siemens Tecnomatix Plant Simulation vulnerability analysis and mitigation

A memory corruption vulnerability (CVE-2024-45474) has been identified in multiple versions of Siemens software products, including Teamcenter Visualization (V14.2 < V14.2.0.14, V14.3 < V14.3.0.12, V2312 < V2312.0008) and Tecnomatix Plant Simulation (V2302 < V2302.0016, V2404 < V2404.0005). The vulnerability was discovered in October 2024 and affects the WRL file parsing functionality (Siemens Advisory, CISA Advisory).

The vulnerability is classified as an improper restriction of operations within the bounds of a memory buffer (CWE-119). When parsing specially crafted WRL files, the affected applications are vulnerable to memory corruption. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, and a CVSS v4.0 base score of 7.3 with vector string CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N (Siemens Advisory).

If successfully exploited, this vulnerability could allow an attacker to execute code in the context of the current process when used in conjunction with other vulnerabilities. The vulnerability affects confidentiality, integrity, and availability of the system (CISA Advisory).

Siemens has released updates to address the vulnerability and recommends users update to the latest versions: Tecnomatix Plant Simulation V2302 to V2302.0016 or later, V2404 to V2404.0005 or later, and respective versions for Teamcenter Visualization. As a workaround, users are advised not to open untrusted WRL files in affected applications. Additionally, Siemens recommends protecting network access to devices with appropriate mechanisms and following their operational guidelines for industrial security (Siemens Advisory).