Shodan
Vulnerabilities
Vulnerable Software
Siemens:  >> Tecnomatix Plant Simulation  Security Vulnerabilities
CVE-2023-24983
A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19805)
CVSS Score
7.8
EPSS Score
0.001
Published
2023-02-14
CVE-2023-24984
A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19806)
CVSS Score
7.8
EPSS Score
0.001
Published
2023-02-14
CVE-2021-27396
A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V16.0.5). The PlantSimCore.dll library lacks proper validation of user-supplied data when parsing SPP files. This could result in a stack based buffer overflow, a different vulnerability than CVE-2021-27398. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13279)
CVSS Score
7.8
EPSS Score
0.009
Published
2021-05-12
CVE-2021-27397
A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V16.0.5). The PlantSimCore.dll library lacks proper validation of user-supplied data when parsing SPP files. This could result in a memory corruption condition. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13287)
CVSS Score
7.8
EPSS Score
0.004
Published
2021-05-12
CVE-2021-27398
A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V16.0.5). The PlantSimCore.dll library lacks proper validation of user-supplied data when parsing SPP files. This could result in a stack based buffer overflow, a different vulnerability than CVE-2021-27396. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13290)
CVSS Score
7.8
EPSS Score
0.009
Published
2021-05-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved