A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a memory corruption vulnerability while parsing NEU files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-14645, ZDI-CAN-15305, ZDI-CAN-15589, ZDI-CAN-15599)
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-609880.pdf | Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-22-297/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-22-298/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-22-299/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-22-300/ | Third Party Advisory VDB Entry |
https://cert-portal.siemens.com/productcert/pdf/ssa-609880.pdf | Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-22-297/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-22-298/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-22-299/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-22-300/ | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:33
Type | Values Removed | Values Added |
---|---|---|
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-609880.pdf - Vendor Advisory | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-22-297/ - Third Party Advisory, VDB Entry | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-22-298/ - Third Party Advisory, VDB Entry | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-22-299/ - Third Party Advisory, VDB Entry | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-22-300/ - Third Party Advisory, VDB Entry |
26 Jun 2023, 18:55
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 |
28 Feb 2022, 15:35
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-22-299/ - Third Party Advisory, VDB Entry | |
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-22-297/ - Third Party Advisory, VDB Entry | |
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-22-298/ - Third Party Advisory, VDB Entry | |
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-22-300/ - Third Party Advisory, VDB Entry |
11 Feb 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Feb 2022, 22:06
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:siemens:simcenter_femap:2020.2:maintenance_pack3:*:*:*:*:*:* cpe:2.3:a:siemens:simcenter_femap:2020.2:-:*:*:*:*:*:* cpe:2.3:a:siemens:simcenter_femap:2021.1:maintenance_pack1:*:*:*:*:*:* cpe:2.3:a:siemens:simcenter_femap:2020.2:maintenance_pack1:*:*:*:*:*:* cpe:2.3:a:siemens:simcenter_femap:2020.2:maintenance_pack2:*:*:*:*:*:* cpe:2.3:a:siemens:simcenter_femap:2021.1:maintenance_pack2:*:*:*:*:*:* cpe:2.3:a:siemens:simcenter_femap:2021.1:-:*:*:*:*:*:* cpe:2.3:a:siemens:simcenter_femap:2021.1:maintenance_pack3:*:*:*:*:*:* |
|
CWE | CWE-119 | |
References | (MISC) https://cert-portal.siemens.com/productcert/pdf/ssa-609880.pdf - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
09 Feb 2022, 16:26
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-02-09 16:15
Updated : 2024-11-21 06:33
NVD link : CVE-2021-46153
Mitre link : CVE-2021-46153
CVE.ORG link : CVE-2021-46153
JSON object : View
Products Affected
siemens
- simcenter_femap