VDB

CVE-2024-53041

CVE-2024-53041 PUBLISHED CVSS 7.800000190734863 HIGH

A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain a stack based overflow vulnerability while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-25000)

EPSS 0.14% · 34.1th percentile

Risk Scores

CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.14%
34.1th percentile

Affected Products

VendorProductVersions
siemenstecnomatix_plant_simulation2404.0, 2302.0
SiemensTeamcenter Visualization V14.20
SiemensTecnomatix Plant Simulation V23020
siemensteamcenter_visualization2312.0, 14.2, 14.3
SiemensTecnomatix Plant Simulation V24040
SiemensTeamcenter Visualization V14.30
SiemensTeamcenter Visualization V23120

Timeline

  • Dec 10, 2024 CVE Published
  • Dec 10, 2024 PoC Published
  • Dec 10, 2024 PoC Published
  • Dec 11, 2024 EPSS Score
  • Dec 12, 2024 PoC Published
  • Dec 28, 2024 EPSS Score
  • Jan 13, 2025 EPSS Score
  • Jan 22, 2025 PoC Published
  • Jan 30, 2025 EPSS Score
  • Feb 16, 2025 EPSS Score
  • Mar 5, 2025 EPSS Score
  • Mar 21, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›