cnvd - cnvd-2023-15414

CNVD-2023-15414

Vulnerability from cnvd - Published: 2023-03-07

Title

Siemens Tecnomatix Plant Simulation未初始化指针漏洞

Description

Siemens Tecnomatix Plant Simulation是面向对象的、图形化的、集成的建模、仿真工具。 Siemens Tecnomatix Plant Simulation存在未初始化指针访问漏洞。攻击者可利用该漏洞在当前进程的上下文中执行代码。

Severity

高

Patch Name

Siemens Tecnomatix Plant Simulation未初始化指针漏洞的补丁

Patch Description

Siemens Tecnomatix Plant Simulation是面向对象的、图形化的、集成的建模、仿真工具。 Siemens Tecnomatix Plant Simulation存在未初始化指针访问漏洞。攻击者可利用该漏洞在当前进程的上下文中执行代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf

Reference

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24978

Impacted products

Name
SIEMENS Tecnomatix Plant Simulation <2201.0006

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-24978",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2023-24978"
    }
  },
  "description": "Siemens Tecnomatix Plant Simulation\u662f\u9762\u5411\u5bf9\u8c61\u7684\u3001\u56fe\u5f62\u5316\u7684\u3001\u96c6\u6210\u7684\u5efa\u6a21\u3001\u4eff\u771f\u5de5\u5177\u3002\n\nSiemens Tecnomatix Plant Simulation\u5b58\u5728\u672a\u521d\u59cb\u5316\u6307\u9488\u8bbf\u95ee\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5f53\u524d\u8fdb\u7a0b\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttps://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2023-15414",
  "openTime": "2023-03-07",
  "patchDescription": "Siemens Tecnomatix Plant Simulation\u662f\u9762\u5411\u5bf9\u8c61\u7684\u3001\u56fe\u5f62\u5316\u7684\u3001\u96c6\u6210\u7684\u5efa\u6a21\u3001\u4eff\u771f\u5de5\u5177\u3002\r\n\r\nSiemens Tecnomatix Plant Simulation\u5b58\u5728\u672a\u521d\u59cb\u5316\u6307\u9488\u8bbf\u95ee\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5f53\u524d\u8fdb\u7a0b\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens Tecnomatix Plant Simulation\u672a\u521d\u59cb\u5316\u6307\u9488\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "SIEMENS Tecnomatix Plant Simulation \u003c2201.0006"
  },
  "referenceLink": "http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24978",
  "serverity": "\u9ad8",
  "submitTime": "2023-02-17",
  "title": "Siemens Tecnomatix Plant Simulation\u672a\u521d\u59cb\u5316\u6307\u9488\u6f0f\u6d1e"
}

CVE-2023-24978 (GCVE-0-2023-24978)

Vulnerability from cvelistv5 – Published: 2023-02-14 10:36 – Updated: 2025-03-20 14:10

Summary

A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V2201.0006). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted SPP files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-19788)

Severity ?

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

CWE-824 - Access of Uninitialized Pointer

Assigner

siemens

References

URL

Tags

https://cert-portal.siemens.com/productcert/pdf/s…

Impacted products

	Vendor	Product	Version
	Siemens	Tecnomatix Plant Simulation	Affected: All versions < V2201.0006

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T11:11:43.313Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-24978",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-20T14:08:54.259527Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-20T14:10:30.450Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Tecnomatix Plant Simulation",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V2201.0006"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in Tecnomatix Plant Simulation (All versions \u003c V2201.0006). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted SPP files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-19788)"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-824",
              "description": "CWE-824: Access of Uninitialized Pointer",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-03-14T09:31:35.828Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2023-24978",
    "datePublished": "2023-02-14T10:36:47.474Z",
    "dateReserved": "2023-02-01T09:35:11.542Z",
    "dateUpdated": "2025-03-20T14:10:30.450Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2023-15414

CVE-2023-24978 (GCVE-0-2023-24978)

Tags

Sightings

Nomenclature