Siemens Tecnomatix Plant Simulation

Plan Patch7.8ICS-CERT ICSA-23-285-10Oct 10, 2023

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

Siemens Tecnomatix Plant Simulation and Parasolid contain multiple buffer overflow and bounds-checking vulnerabilities (CWE-787, CWE-125, CWE-704, CWE-121) triggered when reading malicious SPP and IGS CAD files. Exploitation requires user interaction—tricking a user to open a crafted file in the affected application—but can result in application crash or arbitrary code execution on the host system.

What this means

What could happen

An attacker could trick a plant engineer into opening a malicious CAD file, causing the simulation application to crash or execute arbitrary code on the engineering workstation. This could disrupt design validation, allow theft of process designs, or provide a foothold for further network compromise.

Who's at risk

This affects engineering teams and design personnel who use Siemens Tecnomatix Plant Simulation or any application integrated with vulnerable Parasolid libraries (a 3D geometry and CAD modeling engine used across manufacturing design tools). Risk is highest for utilities and manufacturers that share CAD files externally or receive designs from suppliers.

How it could be exploited

An attacker crafts a malicious SPP or IGS file and delivers it via email or file sharing, tricking a user to open it in Tecnomatix Plant Simulation or another application using the vulnerable Parasolid library. The file triggers a buffer overflow when parsed, crashing the application or executing attacker code with the privileges of the user running the application.

Prerequisites

User must open a malicious SPP or IGS file in the vulnerable application
No special credentials or network access required

requires user interactionlow complexityaffects engineering workstationsno patch available for older Parasolid versions in legacy tools

Exploitability

Low exploit probability (EPSS 0.2%)

Affected products (5)

5 with fix

ProductAffected VersionsFix Status

Tecnomatix Plant Simulation V2201<V2201.00092201.0009

Tecnomatix Plant Simulation V2302<V2302.00032302.0003

Parasolid V35.0<V35.0.26235.0.262

Parasolid V35.1<V35.1.25035.1.250

Parasolid V36.0<V36.0.16936.0.169

Remediation & Mitigation

0/7

Do now

0/1

WORKAROUNDEducate users not to open unsolicited attachments or click links in untrusted emails, and establish approval workflows for CAD files received from external sources

Schedule — requires maintenance window

0/5

Patching may require device reboot — plan for process interruption

Tecnomatix Plant Simulation V2201

HOTFIXUpdate Tecnomatix Plant Simulation V2201 to version 2201.0009 or later

Tecnomatix Plant Simulation V2302

HOTFIXUpdate Tecnomatix Plant Simulation V2302 to version 2302.0003 or later

Parasolid V35.0

HOTFIXUpdate Parasolid V35.0 to version 35.0.262 or later

Parasolid V35.1

HOTFIXUpdate Parasolid V35.1 to version 35.1.250 or later

Parasolid V36.0

HOTFIXUpdate Parasolid V36.0 to version 36.0.169 or later

Long-term hardening

0/1

HARDENINGRestrict network access to engineering workstations and isolate them from business networks using firewalls and network segmentation

CVEs (9)

CVE-2023-44081 CVE-2023-44082 CVE-2023-44083 CVE-2023-44084 CVE-2023-44085 CVE-2023-44086 CVE-2023-44087 CVE-2023-45204 CVE-2023-45601

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/3bcf6cfb-5d87-4f55-854e-1e29bafcb6dc