Multiple X_T File Parsing Vulnerabilities in Parasolid and Teamcenter Visualization
Plan Patch7.8SSA-407785Aug 8, 2023
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
Parasolid and Teamcenter Visualization are vulnerable to memory corruption flaws in the X_T file parser (CWE-476, CWE-125, CWE-787, CWE-770). When a user opens a specially crafted X_T file, the application's parser processes malformed structures that trigger buffer overflows, out-of-bounds reads, or infinite loops. An attacker can exploit this to execute arbitrary code in the process context or cause a denial of service (crash). Siemens has released fixes for most affected versions. Teamcenter Visualization V14.1 has no patch available.
What this means
What could happen
An attacker can craft a malicious X_T file that, when opened by an engineer in Parasolid or Teamcenter Visualization, executes arbitrary code or crashes the application. This could allow an attacker to gain control of the engineering workstation and modify CAD designs or BOM data used in manufacturing.
Who's at risk
CAD engineers and manufacturing design teams using Parasolid or Siemens Teamcenter Visualization are at risk. This affects any organization that uses these design tools to create or review product models, including aerospace, automotive, industrial equipment, and consumer product manufacturers.
How it could be exploited
An attacker sends a malicious X_T CAD file (via email or file share) to an engineer. When the engineer opens the file in Parasolid or Teamcenter Visualization, the application's X_T parser processes crafted file structures that trigger a memory corruption flaw. The flaw allows the attacker to execute code in the context of the application process running on the engineer's workstation.
Prerequisites
- Engineer or CAD designer has Parasolid or Teamcenter Visualization installed
- User must manually open a malicious X_T file
- Vulnerable version of Parasolid or Teamcenter Visualization must be in use
Local user interaction requiredLow attack complexityHigh confidentiality impactHigh integrity impactHigh availability impactAffects engineering workstations and design infrastructure
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (12)
11 with fix1 EOL
ProductAffected VersionsFix Status
Parasolid V34.1<V34.1.25834.1.258
Parasolid V35.0<V35.0.25435.0.254
Parasolid V35.1<V35.1.17135.1.171
Parasolid V35.1<V35.1.19735.1.197
Parasolid V35.1<V35.1.18435.1.184
Teamcenter Visualization V14.1<V14.1.0.1114.1.0.11
Teamcenter Visualization V14.2<V14.2.0.614.2.0.6
Teamcenter Visualization V14.2<V14.2.0.1214.2.0.12
Remediation & Mitigation
0/9
Do now
0/1WORKAROUNDEducate engineering staff to avoid opening X_T files from untrusted sources; verify file origin before opening
Schedule — requires maintenance window
0/7Patching may require device reboot — plan for process interruption
HOTFIXUpdate Parasolid to V34.1.258 or later
HOTFIXUpdate Parasolid to V35.0.254 or later
HOTFIXUpdate Parasolid to V35.1.197 or later (or V35.1.184 or V35.1.171 if specified for your release)
HOTFIXUpdate Teamcenter Visualization to V14.1.0.11 or later
HOTFIXUpdate Teamcenter Visualization to V14.2.0.12 or later (or V14.2.0.6 if that is the target release)
HOTFIXUpdate Teamcenter Visualization to V14.3.0.9 or later (or V14.3.0.3 if that is the target release)
HOTFIXUpdate Teamcenter Visualization to V2312.0004 or later
Mitigations - no patch available
0/1Teamcenter Visualization V14.1 has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:
HARDENINGUse file integrity controls or digital signatures to verify X_T files before opening in CAD applications
CVEs (9)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/26a3d09a-11b7-4fb7-a2ea-abfa421fe749