Multiple Memory Corruption Vulnerabilities in Simcenter Nastran Before 2406.5000

Plan Patch7.8SSA-852501Oct 8, 2024

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

Simcenter Nastran contains multiple memory corruption vulnerabilities (CWE-122, CWE-119) in the BDF file parser that occur when the application reads specially crafted Nastran Bulk Data Format files. Exploitation requires a user to open a malicious BDF file, which could cause the application to crash or lead to arbitrary code execution under the application's privilege level. Affected versions are 2306 (all), 2312 (all), and 2406 versions before 2406.5000.

What this means

What could happen

If a user opens a malicious BDF file with a vulnerable version of Simcenter Nastran, the application could crash or an attacker could execute arbitrary code with the privileges of the application. In an engineering environment, this could disrupt design work or potentially compromise the integrity of engineering models and simulations.

Who's at risk

Engineering and design teams using Siemens Simcenter Nastran for finite element analysis and simulation work. This includes automotive, aerospace, defense, and general mechanical engineering organizations that rely on Nastran for structural analysis and design optimization. Affected versions are widely deployed in design departments.

How it could be exploited

An attacker creates a malicious BDF (Nastran Bulk Data File) with specially crafted content that triggers memory corruption when parsed. The attacker sends or hosts this file and relies on a user to open it with Simcenter Nastran. Upon opening, the memory corruption is triggered, causing application crash or code execution.

Prerequisites

User must open a malicious BDF file with a vulnerable version of Simcenter Nastran
No special user privileges required beyond ability to run the application

User interaction required (file opening)Low complexity attackNo authentication bypass requiredAffects engineering productivity and data integrityNo patch available for 2306 and 2312 versions

Exploitability

Low exploit probability (EPSS 0.1%)

Affected products (3)

1 with fix2 EOL

ProductAffected VersionsFix Status

Simcenter Nastran 2406< V2406.50002406.5000

Simcenter Nastran 2306All versionsNo fix (EOL)

Simcenter Nastran 2312All versionsNo fix (EOL)

Remediation & Mitigation

0/3

Do now

0/1

Simcenter Nastran 2306

WORKAROUNDFor Simcenter Nastran 2306 and 2312: Do not open BDF files from untrusted sources until a fix is released by Siemens; validate all BDF files from external parties before opening them in Nastran

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

Simcenter Nastran 2406

HOTFIXUpdate Simcenter Nastran 2406 to version 2406.5000 or later

Mitigations - no patch available

0/1

The following products have reached End of Life with no planned fix: Simcenter Nastran 2306, Simcenter Nastran 2312. Apply the following compensating controls:

HARDENINGImplement file transfer controls and user training to reduce the risk of users receiving and opening malicious files

CVEs (2)

CVE-2024-41981 CVE-2024-47046

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/8a463592-40a3-49ea-bd12-18b133c4ed6a