File Parsing Vulnerability in Simcenter Femap Before V2512

An engineer could be tricked into opening a malicious CAD file, allowing an attacker to run code on their engineering workstation with the same privileges as the user, potentially giving access to design files or sensitive process information stored on that system.

Engineering and design teams who use Siemens Simcenter Femap for CAD/CAM work, finite element analysis, or process design activities. This affects workstations used for plant engineering, control system design, or equipment design—particularly anyone who receives or reviews external design files.

An attacker creates a malicious SLDPRT (SolidWorks part) file and sends it to an engineer via email or file-sharing service. When the engineer opens the file in Femap to review or process the design, uninitialized memory in the file parser is exploited, allowing arbitrary code execution on the workstation.