VDB
SSA-764801
SSA-764801
PUBLISHED
CVSS 7.800000190734863 HIGH
Siemens Tecnomatix Plant Simulation contains multiple vulnerabilities that could be triggered when the application reads PAR, SPP, STP and PRT files. If a user is tricked to open a malicious file using the affected application, this could lead to a crash, and potentially also to arbitrary code execution on the target host system. Siemens has released updates for the affected products and recommends to update to the latest versions.
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tecnomatix Plant Simulation V2201 | ||
| Tecnomatix Plant Simulation V2302 |
Exploit Intelligence
- https://cert-portal.siemens.com/productcert/html/ssa-764801.html (circl)
- https://cert-portal.siemens.com/productcert/csaf/ssa-764801.json (circl)
- https://cert-portal.siemens.com/productcert/pdf/ssa-764801.pdf (circl)
- https://cert-portal.siemens.com/productcert/txt/ssa-764801.txt (circl)
- https://support.sw.siemens.com/ (circl)
Timeline
- CVE Published
References
- https://cert-portal.siemens.com/productcert/html/ssa-764801.html advisory
- https://cert-portal.siemens.com/productcert/csaf/ssa-764801.json advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-764801.pdf advisory
- https://cert-portal.siemens.com/productcert/txt/ssa-764801.txt advisory
- https://support.sw.siemens.com/ fix