CVE-2024-27907 — Vulnetix

Try Vulnetix Request Demo

CVE-2024-27907 PUBLISHED CVSS 7.800000190734863 HIGH

A vulnerability has been identified in Simcenter Femap (All versions < V2306.0000). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted Catia MODEL file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-22051)

EPSS 0.14% · 34.2th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

EPSS Score

0.14%

34.2th percentile

Affected Products

Vendor	Product	Versions
siemens	simcenter_femap	0
siemens	simcenter_femap	0
Siemens	Simcenter Femap	0

Timeline

Mar 12, 2024 CVE Published
Mar 13, 2024 EPSS Score
Apr 8, 2024 EPSS Score
May 3, 2024 EPSS Score
May 29, 2024 EPSS Score
Jun 23, 2024 EPSS Score
Jul 19, 2024 EPSS Score
Aug 13, 2024 EPSS Score
Aug 15, 2024 CVE Updated
Sep 8, 2024 EPSS Score
Oct 3, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score

References

Open in Interactive Console →