Lucene search
China National Vulnerability DatabaseCNVD-2023-71239HistoryAug 14, 2023 - 12:00 a.m.
Siemens Tecnomatix Plant Simulation Out-of-Bounds Write Vulnerability (CNVD-2023-71239)
2023-08-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
18
siemens tecnomatix
plant simulation
industrial control device
germany
discrete-event simulation
vulnerability
igs file
allocated buffer
code execution
EPSS
0.001
Percentile
41.9%
Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. The power of discrete-event simulation is used to analyze and optimize throughput and thus improve manufacturing system performance. Siemens Tecnomatix Plant Simulation suffers from an out-of-bounds write vulnerability that arises from parsing a specially crafted IGS file that contains an out-of-bounds write beyond the end of the allocated buffer. An attacker could use this vulnerability to execute code in the context of the current process.
Related
zdi
zdi
cvelist
cvelist
CVE-2023-38681
2023-08-08 09:20:46
nvd
nvd
CVE-2023-38681
2023-08-08 10:15:16
prion
prion
Design/Logic Flaw
2023-08-08 10:15:00
cve
cve
CVE-2023-38681
2023-08-08 10:15:16