CVE-2021-46158

2022-02-0915:17:23

CWE-121

siemens

www.cve.org

simcenter femap

buffer overflow

neu files

zdi-can-15085

zdi-can-15289

zdi-can-15602

execute code

EPSS

0.003

Percentile

68.2%

JSON

A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a stack based buffer overflow vulnerability while parsing NEU files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-15085, ZDI-CAN-15289, ZDI-CAN-15602)

CNA Affected

[
  {
    "product": "Simcenter Femap V2020.2",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  },
  {
    "product": "Simcenter Femap V2021.1",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  }
]