File Parsing Vulnerabilities in Tecnomatix Plant Simulation

Plan Patch7.8SSA-764801Jul 11, 2023

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

Tecnomatix Plant Simulation contains multiple buffer overflow and memory corruption vulnerabilities in its file parsing logic for PAR, SPP, STP, and PRT files. Opening a crafted malicious file could cause the application to crash or allow an attacker to execute arbitrary code on the workstation. The vulnerabilities affect V2201 versions prior to 2201.0008 and V2302 versions prior to 2302.0002. Siemens has released patched versions.

What this means

What could happen

An attacker could craft a malicious simulation file that, when opened by a user, crashes the application or executes arbitrary code on the engineering workstation running Tecnomatix Plant Simulation.

Who's at risk

Facilities and manufacturing operations using Siemens Tecnomatix Plant Simulation for process modeling and simulation on engineering workstations. This affects teams responsible for plant design, layout optimization, and simulation work who use V2201 (before 2201.0008) or V2302 (before 2302.0002).

How it could be exploited

An attacker sends a malicious PAR, SPP, STP, or PRT file to a user. When the user opens the file in Tecnomatix Plant Simulation, the application parses the file, triggering a buffer overflow or memory corruption vulnerability that could allow code execution on the workstation. No network access is needed—only user interaction.

Prerequisites

User must open a malicious file attachment or download using Tecnomatix Plant Simulation
Affected version of Tecnomatix Plant Simulation must be installed on the workstation

Low complexity exploitationUser interaction required (file opening)Could lead to arbitrary code executionAffects engineering workstations with user access to sensitive process models

Exploitability

Low exploit probability (EPSS 0.1%)

Affected products (2)

2 with fix

ProductAffected VersionsFix Status

Tecnomatix Plant Simulation V2201< V2201.00082201.0008

Tecnomatix Plant Simulation V2302< V2302.00022302.0002

Remediation & Mitigation

0/3

Do now

0/1

WORKAROUNDUntil patched, warn users not to open PAR, SPP, STP, or PRT files from untrusted sources

Schedule — requires maintenance window

0/2

Patching may require device reboot — plan for process interruption

Tecnomatix Plant Simulation V2201

HOTFIXUpdate Tecnomatix Plant Simulation V2201 to version 2201.0008 or later

Tecnomatix Plant Simulation V2302

HOTFIXUpdate Tecnomatix Plant Simulation V2302 to version 2302.0002 or later

CVEs (10)

CVE-2023-37246 CVE-2023-37247 CVE-2023-37248 CVE-2023-37374 CVE-2023-37375 CVE-2023-37376 CVE-2023-38679 CVE-2023-38680 CVE-2023-38681 CVE-2023-41846

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/2866895c-87b2-4af1-b589-7751b1ac296f