File parsing vulnerabilities in IFC adapter in NX
Plan Patch7.8SSA-208530Sep 14, 2021
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
Siemens NX is affected by file parsing vulnerabilities (CWE-416, CWE-125) in the IFC adapter that can be triggered when the application reads IFC files. A user tricked into opening a malicious IFC file could experience an access violation or arbitrary code execution on the host system.
What this means
What could happen
An attacker could cause NX to crash or execute arbitrary code on an engineering workstation by crafting a malicious IFC file. If the workstation has access to plant networks or control systems, this could be a stepping stone to further compromise.
Who's at risk
Engineering organizations using Siemens NX 1980 Series for design and modeling work, particularly those who receive IFC files from external suppliers, consultants, or public repositories. This affects design engineers and CAD workstations that may be connected to corporate or plant networks.
How it could be exploited
An attacker crafts a malicious IFC (building information model) file and tricks an engineer into opening it with NX. When NX parses the file, memory corruption vulnerabilities are triggered, causing either a crash or allowing the attacker to run code with the privileges of the engineer's workstation.
Prerequisites
- User must open a malicious IFC file in NX
- File comes from untrusted or unknown source
Low attack complexityUser interaction required (must open file)Affects engineering workstations with potential network access
Exploitability
Low exploit probability (EPSS 0.4%)
Affected products (1)
ProductAffected VersionsFix Status
NX 1980 Series< V19841984
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HOTFIXUpdate NX to version 1984 or later
CVEs (2)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/139206c6-1d5e-43cf-aae1-21866a5c6f39