Siemens Simcenter Femap

Plan Patch7.8ICS-CERT ICSA-24-347-06Dec 10, 2024

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

Simcenter Femap contains multiple memory corruption vulnerabilities (CWE-122, CWE-119) in BDF file parsing. When a user opens a malicious BDF file in Simcenter Femap V2306, V2401, or V2406, the application may crash or potentially allow arbitrary code execution. The vulnerability requires user interaction and cannot be exploited remotely. Siemens has released a fix for V2406 and is preparing fixes for earlier versions.

What this means

What could happen

Memory corruption in Simcenter Femap when processing malicious BDF files could crash the engineering application or allow arbitrary code execution on the engineering workstation, disrupting plant design and analysis work.

Who's at risk

This vulnerability affects engineering teams using Simcenter Femap for mechanical design and finite element analysis at manufacturing, automotive, aerospace, and utilities organizations. The risk is primarily to engineering workstations and the integrity of plant design data, not to operational control systems or production equipment.

How it could be exploited

An attacker crafts a malicious BDF (Nastran bulk data format) file and tricks an engineer into opening it in Simcenter Femap. The memory corruption vulnerability is triggered during file parsing, causing a crash or potentially allowing the attacker to execute arbitrary code with the privileges of the user running Femap.

Prerequisites

User interaction required: engineer must be tricked into opening a malicious BDF file
Access to the engineering workstation running Simcenter Femap
BDF file must be in a format that triggers the memory corruption during parsing

Memory corruption vulnerability (buffer overflow/underflow)User interaction requiredNo patch available for V2306 and V2401Affects engineering workstations rather than operational systems

Exploitability

Low exploit probability (EPSS 0.1%)

Affected products (3)

1 with fix2 EOL

ProductAffected VersionsFix Status

Simcenter Femap V2406All versions2406 (latest version with Nastran Updates)

Simcenter Femap V2306All versionsNo fix (EOL)

Simcenter Femap V2401All versionsNo fix (EOL)

Remediation & Mitigation

0/4

Do now

0/1

Simcenter Femap V2306

WORKAROUNDFor Simcenter Femap V2306 and V2401: Do not open untrusted or suspicious BDF files in the affected applications; only process BDF files from known and trusted sources

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

Simcenter Femap V2406

HOTFIXUpdate Simcenter Femap V2406 to the latest version using the Nastran Updates published by Siemens (available at https://support.sw.siemens.com/downloads/PL20240416271650117/)

Mitigations - no patch available

0/2

The following products have reached End of Life with no planned fix: Simcenter Femap V2306, Simcenter Femap V2401. Apply the following compensating controls:

HARDENINGEducate engineering staff to recognize social engineering attacks and avoid opening unsolicited file attachments or clicking links in unsolicited emails

HARDENINGImplement network access controls to restrict unauthorized distribution of files to engineering workstations

CVEs (2)

CVE-2024-41981 CVE-2024-47046

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/ccae22b4-3336-413f-8866-aab5d450503f