Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-71240
HistoryAug 14, 2023 - 12:00 a.m.

Siemens Tecnomatix Plant Simulation Out-of-Bounds Write Vulnerability (CNVD-2023-71240)

2023-08-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
siemens tecnomatix
industrial control device
discrete-event simulation
specially crafted spp file
out-of-bounds write
allocated buffer
code execution
security vulnerability

EPSS

0.001

Percentile

41.9%

JSON

Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. The power of discrete-event simulation is used to analyze and optimize throughput and thus improve manufacturing system performance. Siemens Tecnomatix Plant Simulation suffers from an out-of-bounds write vulnerability that arises from parsing a specially crafted SPP file that contains an out-of-bounds write beyond the end of the allocated buffer. An attacker could use this vulnerability to execute code in the context of the current process.

Related

cvelist 1
cve 1
prion 1
nvd 1
zdi 1
cvelist
cvelist
CVE-2023-38679
2023-08-08 09:20:44
cve
cve
CVE-2023-38679
2023-08-08 10:15:16
prion
prion
Design/Logic Flaw
2023-08-08 10:15:00
nvd
nvd
CVE-2023-38679
2023-08-08 10:15:16
zdi
zdi
Siemens Tecnomatix Plant Simulation SPP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2023-10-19 00:00:00

EPSS

0.001

Percentile

41.9%

JSON
Related for CNVD-2023-71240
cvelist1cve1prion1nvd1zdi1