Siemens Simcenter Femap

Plan PatchCVSS 7.8ICS-CERT ICSA-24-347-06Dec 10, 2024

Siemens

Attack path

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

Simcenter Femap contains multiple memory corruption vulnerabilities (CWE-122, CWE-119) in the BDF file parser. When a user opens a specially crafted BDF (Nastran format) file, the application can experience buffer overflows or memory safety violations that may crash the application or lead to arbitrary code execution with user privileges. All versions of V2306, V2401, and V2406 are affected. Siemens has released a patch for V2406 and is preparing fixes for earlier versions.

What this means

What could happen

Memory corruption in Simcenter Femap when opening malicious BDF files could cause the application to crash or allow an attacker to execute arbitrary commands on the engineering workstation. This affects the availability and integrity of design/simulation work and could introduce malicious code into the engineering environment.

Who's at risk

Engineering departments and design teams using Simcenter Femap (versions 2306, 2401, or 2406) for finite element analysis and design work. Risk is highest for organizations where engineering workstations have access to shared file repositories or email where malicious BDF files could be delivered.

How it could be exploited

An attacker crafts a malicious BDF (Nastran format) file and tricks a user into opening it with Simcenter Femap. The malicious file triggers a memory buffer overflow or other memory corruption when parsed, either crashing the application or executing attacker-supplied code with the privileges of the user running Femap.

Prerequisites

User must open a malicious BDF file (social engineering required)
User has Simcenter Femap installed and running on the workstation

local exploitation only (user interaction required)low complexityaffects engineering workstations in OT design environmentolder versions (2306, 2401) will not receive patchessocial engineering vector (file delivery)

Exploitability

Unlikely to be exploited — EPSS score 0.1%

Affected products (3)

1 with fix2 EOL

ProductAffected VersionsFix Status

Simcenter Femap V2406All versions2406 (latest version with Nastran Updates)

Simcenter Femap V2306All versionsNo fix (EOL)

Simcenter Femap V2401All versionsNo fix (EOL)

Remediation & Mitigation

0/4

Do now

0/2

WORKAROUNDDo not open BDF files from untrusted or unexpected sources in Simcenter Femap

HARDENINGWarn engineering staff not to click links or open attachments in unsolicited emails that may contain malicious BDF files

Schedule — requires maintenance window

0/2

Patching may require device reboot — plan for process interruption

Simcenter Femap V2406

HOTFIXUpdate Simcenter Femap V2406 to the latest version including the Nastran Updates patch published at https://support.sw.siemens.com/downloads/PL20240416271650117/

Simcenter Femap V2306

WORKAROUNDFor Simcenter Femap V2306 and V2401 users: Monitor for security updates from Siemens and plan migration to a supported version once patches are available

CVEs (2)

CVE-2024-41981 CVE-2024-47046

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/ccae22b4-3336-413f-8866-aab5d450503f

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.