Vulnerability-Lookup

CVE-2022-39142 (GCVE-0-2022-39142)

Vulnerability from cvelistv5 – Published: 2022-09-13 09:40 – Updated: 2024-08-03 11:10

Summary

A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.262), Parasolid V33.1 (All versions >= V33.1.262 < V33.1.263), Parasolid V34.0 (All versions < V34.0.252), Parasolid V34.1 (All versions < V34.1.242), Parasolid V35.0 (All versions < V35.0.161), Parasolid V35.0 (All versions >= V35.0.161 < V35.0.164), Simcenter Femap V2022.1 (All versions < V2022.1.3), Simcenter Femap V2022.2 (All versions < V2022.2.2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17485)

Severity ?

No CVSS data available.

CWE

CWE-787 - Out-of-bounds Write

Assigner

siemens

References

URL

GHSA-2FFG-72C9-5FQW

Vulnerability from github – Published: 2022-09-14 00:00 – Updated: 2022-09-14 00:00

Details

Severity ?

7.8 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-39142"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-09-13T10:15:00Z",
    "severity": "HIGH"
  },
  "details": "A vulnerability has been identified in Parasolid V33.1 (All versions \u003c V33.1.262), Parasolid V33.1 (All versions \u003e= V33.1.262 \u003c V33.1.263), Parasolid V34.0 (All versions \u003c V34.0.252), Parasolid V34.1 (All versions \u003c V34.1.242), Parasolid V35.0 (All versions \u003c V35.0.161), Parasolid V35.0 (All versions \u003e= V35.0.161 \u003c V35.0.164), Simcenter Femap V2022.1 (All versions \u003c V2022.1.3), Simcenter Femap V2022.2 (All versions \u003c V2022.2.2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17485)",
  "id": "GHSA-2ffg-72c9-5fqw",
  "modified": "2022-09-14T00:00:49Z",
  "published": "2022-09-14T00:00:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39142"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2022-39142

Vulnerability from fkie_nvd - Published: 2022-09-13 10:15 - Updated: 2024-11-21 07:17

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	productcert@siemens.com	https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf	Vendor Advisory

Impacted products

Vendor	Product	Version
siemens	simcenter_femap	*
siemens	simcenter_femap	*
siemens	parasolid	*
siemens	parasolid	*
siemens	parasolid	*
siemens	parasolid	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:siemens:simcenter_femap:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "55A01C08-1B67-4D81-8730-9ED534E37F7F",
              "versionEndExcluding": "2022.1.3",
              "versionStartIncluding": "2022.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:siemens:simcenter_femap:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CF06743-FC11-46E1-BD60-D9F6F514E52C",
              "versionEndExcluding": "2022.2.2",
              "versionStartIncluding": "2022.2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A2239AD-07CA-4FE9-AAFC-CE580BD903B2",
              "versionEndExcluding": "33.1.263",
              "versionStartIncluding": "33.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0D9079D-6138-4602-A982-9BC4ECBC35E7",
              "versionEndExcluding": "34.0.252",
              "versionStartIncluding": "34.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C486991-A1C0-4815-AAD6-163464D711AA",
              "versionEndExcluding": "34.1.242",
              "versionStartIncluding": "34.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E5741DD9-05D9-4F2D-AD1F-9D27D2A4070D",
              "versionEndExcluding": "35.0.164",
              "versionStartIncluding": "35.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in Parasolid V33.1 (All versions \u003c V33.1.262), Parasolid V33.1 (All versions \u003e= V33.1.262 \u003c V33.1.263), Parasolid V34.0 (All versions \u003c V34.0.252), Parasolid V34.1 (All versions \u003c V34.1.242), Parasolid V35.0 (All versions \u003c V35.0.161), Parasolid V35.0 (All versions \u003e= V35.0.161 \u003c V35.0.164), Simcenter Femap V2022.1 (All versions \u003c V2022.1.3), Simcenter Femap V2022.2 (All versions \u003c V2022.2.2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17485)"
    },
    {
      "lang": "es",
      "value": "Se ha identificado una vulnerabilidad en Parasolid versiones V33.1 (Todas las versiones anteriores a V33.1.262), Parasolid versiones V33.1 (Todas las versiones posteriores a V33.1.262 incluy\u00e9ndola, anteriores a V33.1.263), Parasolid versiones V34.0 (Todas las versiones anteriores a V34.0.252), Parasolid versiones V34.1 (Todas las versiones anteriores a V34. 1.242), Parasolid versiones V35.0 (Todas las versiones anteriores a V35.0.161), Parasolid versiones V35.0 (Todas las versiones posteriores a V35.0.161 incluy\u00e9ndola, anteriores a V35.0.164), Simcenter Femap versiones V2022.1 (Todas las versiones anteriores a V2022.1.3), Simcenter Femap versiones V2022.2 (Todas las versiones anteriores a V2022.2.2). La aplicaci\u00f3n afectada contiene una escritura fuera de l\u00edmites m\u00e1s all\u00e1 del final de un b\u00fafer asignado mientras analiza archivos X_T especialmente dise\u00f1ados. Esto podr\u00eda permitir a un atacante ejecutar c\u00f3digo en el contexto del proceso actual. (ZDI-CAN-17485)"
    }
  ],
  "id": "CVE-2022-39142",
  "lastModified": "2024-11-21T07:17:39.617",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-09-13T10:15:11.247",
  "references": [
    {
      "source": "productcert@siemens.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf"
    }
  ],
  "sourceIdentifier": "productcert@siemens.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "productcert@siemens.com",
      "type": "Secondary"
    }
  ]
}

CNVD-2022-62992

Vulnerability from cnvd - Published: 2022-09-14

Title

Siemens Simcenter Femap and Parasolid越界写入漏洞（CNVD-2022-62992）

Description

Parasolid是一种3D几何建模工具，支持各种技术，包括实体建模、直接编辑和自由曲面/片材建模。Simcenter Femap是一种高级仿真应用程序，用于创建、编辑和检查复杂产品或系统的有限元模型。 Siemens Simcenter Femap and Parasolid存在越界写入漏洞，攻击者可利用该漏洞在当前进程的上下文中执行代码。

Severity

高

Patch Name

Siemens Simcenter Femap and Parasolid越界写入漏洞（CNVD-2022-62992）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://cert-portal.siemens.com/productcert/html/ssa-518824.html

Reference

https://cert-portal.siemens.com/productcert/html/ssa-518824.html

Impacted products

Name
['Siemens Parasolid <33.1.262', 'Siemens Parasolid <34.0.252', 'Siemens Parasolid <35.0.161', 'Siemens Parasolid <34.1.242', 'Siemens Simcenter Femap <2022.1.3', 'Siemens Simcenter Femap <2022.2.2', 'Siemens Parasolid >=33.1.262，<33.1.263', 'Siemens Parasolid >=35.0.161，<35.0.164']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-39142"
    }
  },
  "description": "Parasolid\u662f\u4e00\u79cd3D\u51e0\u4f55\u5efa\u6a21\u5de5\u5177\uff0c\u652f\u6301\u5404\u79cd\u6280\u672f\uff0c\u5305\u62ec\u5b9e\u4f53\u5efa\u6a21\u3001\u76f4\u63a5\u7f16\u8f91\u548c\u81ea\u7531\u66f2\u9762/\u7247\u6750\u5efa\u6a21\u3002Simcenter Femap\u662f\u4e00\u79cd\u9ad8\u7ea7\u4eff\u771f\u5e94\u7528\u7a0b\u5e8f\uff0c\u7528\u4e8e\u521b\u5efa\u3001\u7f16\u8f91\u548c\u68c0\u67e5\u590d\u6742\u4ea7\u54c1\u6216\u7cfb\u7edf\u7684\u6709\u9650\u5143\u6a21\u578b\u3002\n\nSiemens Simcenter Femap and Parasolid\u5b58\u5728\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5f53\u524d\u8fdb\u7a0b\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4ee3\u7801\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://cert-portal.siemens.com/productcert/html/ssa-518824.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-62992",
  "openTime": "2022-09-14",
  "patchDescription": "Parasolid\u662f\u4e00\u79cd3D\u51e0\u4f55\u5efa\u6a21\u5de5\u5177\uff0c\u652f\u6301\u5404\u79cd\u6280\u672f\uff0c\u5305\u62ec\u5b9e\u4f53\u5efa\u6a21\u3001\u76f4\u63a5\u7f16\u8f91\u548c\u81ea\u7531\u66f2\u9762/\u7247\u6750\u5efa\u6a21\u3002Simcenter Femap\u662f\u4e00\u79cd\u9ad8\u7ea7\u4eff\u771f\u5e94\u7528\u7a0b\u5e8f\uff0c\u7528\u4e8e\u521b\u5efa\u3001\u7f16\u8f91\u548c\u68c0\u67e5\u590d\u6742\u4ea7\u54c1\u6216\u7cfb\u7edf\u7684\u6709\u9650\u5143\u6a21\u578b\u3002\r\n\r\nSiemens Simcenter Femap and Parasolid\u5b58\u5728\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5f53\u524d\u8fdb\u7a0b\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens Simcenter Femap and Parasolid\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\uff08CNVD-2022-62992\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Siemens Parasolid \u003c33.1.262",
      "Siemens Parasolid \u003c34.0.252",
      "Siemens Parasolid \u003c35.0.161",
      "Siemens Parasolid \u003c34.1.242",
      "Siemens Simcenter Femap \u003c2022.1.3",
      "Siemens Simcenter Femap \u003c2022.2.2",
      "Siemens Parasolid \u003e=33.1.262\uff0c\u003c33.1.263",
      "Siemens Parasolid \u003e=35.0.161\uff0c\u003c35.0.164"
    ]
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/html/ssa-518824.html",
  "serverity": "\u9ad8",
  "submitTime": "2022-09-14",
  "title": "Siemens Simcenter Femap and Parasolid\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\uff08CNVD-2022-62992\uff09"
}

GSD-2022-39142

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2022-39142

Aliases

CVE-2022-39142

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-39142",
    "description": "A vulnerability has been identified in Parasolid V33.1 (All versions \u003c V33.1.262), Parasolid V33.1 (All versions \u003e= V33.1.262 \u003c V33.1.263), Parasolid V34.0 (All versions \u003c V34.0.252), Parasolid V34.1 (All versions \u003c V34.1.242), Parasolid V35.0 (All versions \u003c V35.0.161), Parasolid V35.0 (All versions \u003e= V35.0.161 \u003c V35.0.164), Simcenter Femap V2022.1 (All versions \u003c V2022.1.3), Simcenter Femap V2022.2 (All versions \u003c V2022.2.2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17485)",
    "id": "GSD-2022-39142"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-39142"
      ],
      "details": "A vulnerability has been identified in Parasolid V33.1 (All versions \u003c V33.1.262), Parasolid V33.1 (All versions \u003e= V33.1.262 \u003c V33.1.263), Parasolid V34.0 (All versions \u003c V34.0.252), Parasolid V34.1 (All versions \u003c V34.1.242), Parasolid V35.0 (All versions \u003c V35.0.161), Parasolid V35.0 (All versions \u003e= V35.0.161 \u003c V35.0.164), Simcenter Femap V2022.1 (All versions \u003c V2022.1.3), Simcenter Femap V2022.2 (All versions \u003c V2022.2.2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17485)",
      "id": "GSD-2022-39142",
      "modified": "2023-12-13T01:19:20.955341Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "productcert@siemens.com",
        "ID": "CVE-2022-39142",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Parasolid V33.1",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V33.1.262"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Parasolid V33.1",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003e= V33.1.262 \u003c V33.1.263"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Parasolid V34.0",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V34.0.252"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Parasolid V34.1",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V34.1.242"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Parasolid V35.0",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c  V35.0.161"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Parasolid V35.0",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003e= V35.0.161 \u003c V35.0.164"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Simcenter Femap V2022.1",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V2022.1.3"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Simcenter Femap V2022.2",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V2022.2.2"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Siemens"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability has been identified in Parasolid V33.1 (All versions \u003c V33.1.262), Parasolid V33.1 (All versions \u003e= V33.1.262 \u003c V33.1.263), Parasolid V34.0 (All versions \u003c V34.0.252), Parasolid V34.1 (All versions \u003c V34.1.242), Parasolid V35.0 (All versions \u003c V35.0.161), Parasolid V35.0 (All versions \u003e= V35.0.161 \u003c V35.0.164), Simcenter Femap V2022.1 (All versions \u003c V2022.1.3), Simcenter Femap V2022.2 (All versions \u003c V2022.2.2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17485)"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-787: Out-of-bounds Write"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf",
            "refsource": "MISC",
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:siemens:simcenter_femap:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "2022.2.2",
                "versionStartIncluding": "2022.2",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:siemens:simcenter_femap:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "2022.1.3",
                "versionStartIncluding": "2022.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "34.1.242",
                "versionStartIncluding": "34.1",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "34.0.252",
                "versionStartIncluding": "34.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "35.0.164",
                "versionStartIncluding": "35.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:siemens:parasolid:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "33.1.263",
                "versionStartIncluding": "33.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "productcert@siemens.com",
          "ID": "CVE-2022-39142"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability has been identified in Parasolid V33.1 (All versions \u003c V33.1.262), Parasolid V33.1 (All versions \u003e= V33.1.262 \u003c V33.1.263), Parasolid V34.0 (All versions \u003c V34.0.252), Parasolid V34.1 (All versions \u003c V34.1.242), Parasolid V35.0 (All versions \u003c V35.0.161), Parasolid V35.0 (All versions \u003e= V35.0.161 \u003c V35.0.164), Simcenter Femap V2022.1 (All versions \u003c V2022.1.3), Simcenter Femap V2022.2 (All versions \u003c V2022.2.2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17485)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-787"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2022-09-13T15:14Z",
      "publishedDate": "2022-09-13T10:15Z"
    }
  }
}

CERTFR-2022-AVI-814

Vulnerability from certfr_avis - Published: 2022-09-13 - Updated: 2022-09-13

De multiples vulnérabilités ont été découvertes dans les produits SIEMENS. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Siemens	N/A	RUGGEDCOM ROS RSG920P versions antérieures à 5.6.0
Siemens	N/A	Parasolid V33.1 versions 33.1.x antérieures à 33.1.263
Siemens	N/A	RUGGEDCOM ROS RSG2300 versions antérieures à 5.6.0
Siemens	N/A	Parasolid V33.1 versions 34.0.x antérieures à 34.0.252
Siemens	N/A	RUGGEDCOM ROS RS416v2 versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RSG908C versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RSG2288 versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RST2228P versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RST916C versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RS900 (32M) versions antérieures à 5.6.0
Siemens	N/A	Mendix SAML Module versions 3.3.x antérieures à 3.3.1
Siemens	N/A	RUGGEDCOM ROS RS900G (32M) versions antérieures à 5.6.0
Siemens	N/A	SINEC INS versions antérieures à 1.0 SP2
Siemens	N/A	CoreShield One-Way Gateway (OWG) Software versions antérieures à 2.2
Siemens	N/A	RUGGEDCOM ROS RMC8388 versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RSG2100 (32M) versions antérieures à 5.6.0
Siemens	N/A	Mendix SAML Module versions 2.3.x antérieures à 2.3.0
Siemens	N/A	Simcenter Femap V2022.2 versions antérieures à V2022.2.2
Siemens	N/A	RUGGEDCOM ROS RSG2300P versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RS416Pv2 versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RST916P versions antérieures à 5.6.0
Siemens	N/A	Simcenter Femap V2022.1 versions antérieures à V2022.1.3
Siemens	N/A	RUGGEDCOM ROS RSG909R versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RSG907R versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RST2228 versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RSG2488 versions antérieures à 5.6.0
Siemens	N/A	Mendix SAML Module versions 1.17.x antérieures à 1.17.0
Siemens	N/A	RUGGEDCOM ROS RSL910 versions antérieures à 5.6.0
Siemens	N/A	RUGGEDCOM ROS RSG910C versions antérieures à 5.6.0
Siemens	N/A	Parasolid V35.0 versions 35.0.x antérieures à 35.0.164
Siemens	N/A	Parasolid V33.1 versions 34.1.x antérieures à 34.1.242

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens ssa-589975 du 13 septembre 2022	None	vendor-advisory
Bulletin de sécurité Siemens ssa-638652 du 13 septembre 2022	None	vendor-advisory
Bulletin de sécurité Siemens ssa-459643 du 13 septembre 2022	None	vendor-advisory
Bulletin de sécurité Siemens ssa-518824 du 13 septembre 2022	None	vendor-advisory
Bulletin de sécurité Siemens ssa-637483 du 13 septembre 2022	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "RUGGEDCOM ROS RSG920P versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V33.1 versions 33.1.x ant\u00e9rieures \u00e0 33.1.263",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG2300 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V33.1 versions 34.0.x ant\u00e9rieures \u00e0 34.0.252",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RS416v2 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG908C versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG2288 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RST2228P versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RST916C versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RS900 (32M) versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Mendix SAML Module versions 3.3.x ant\u00e9rieures \u00e0 3.3.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RS900G (32M) versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINEC INS versions ant\u00e9rieures \u00e0 1.0 SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "CoreShield One-Way Gateway (OWG) Software versions ant\u00e9rieures \u00e0 2.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RMC8388 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG2100 (32M) versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Mendix SAML Module versions 2.3.x ant\u00e9rieures \u00e0 2.3.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter Femap V2022.2 versions ant\u00e9rieures \u00e0 V2022.2.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG2300P versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RS416Pv2 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RST916P versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter Femap V2022.1 versions ant\u00e9rieures \u00e0 V2022.1.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG909R versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG907R versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RST2228 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG2488 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Mendix SAML Module versions 1.17.x ant\u00e9rieures \u00e0 1.17.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSL910 versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROS RSG910C versions ant\u00e9rieures \u00e0 5.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V35.0 versions 35.0.x ant\u00e9rieures \u00e0 35.0.164",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V33.1 versions 34.1.x ant\u00e9rieures \u00e0 34.1.242",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-0701",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-0701"
    },
    {
      "name": "CVE-2021-25220",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-25220"
    },
    {
      "name": "CVE-2022-39144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39144"
    },
    {
      "name": "CVE-2022-39145",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39145"
    },
    {
      "name": "CVE-2022-39137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39137"
    },
    {
      "name": "CVE-2022-39155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39155"
    },
    {
      "name": "CVE-2022-39146",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39146"
    },
    {
      "name": "CVE-2022-39152",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39152"
    },
    {
      "name": "CVE-2020-28168",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-28168"
    },
    {
      "name": "CVE-2021-23337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
    },
    {
      "name": "CVE-2022-0155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-0155"
    },
    {
      "name": "CVE-2021-4160",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-4160"
    },
    {
      "name": "CVE-2022-39143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39143"
    },
    {
      "name": "CVE-2022-39140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39140"
    },
    {
      "name": "CVE-2022-39158",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39158"
    },
    {
      "name": "CVE-2022-39153",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39153"
    },
    {
      "name": "CVE-2022-39156",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39156"
    },
    {
      "name": "CVE-2020-7793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7793"
    },
    {
      "name": "CVE-2021-23839",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-23839"
    },
    {
      "name": "CVE-2022-38466",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-38466"
    },
    {
      "name": "CVE-2022-39154",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39154"
    },
    {
      "name": "CVE-2020-28500",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-28500"
    },
    {
      "name": "CVE-2022-39147",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39147"
    },
    {
      "name": "CVE-2022-37011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-37011"
    },
    {
      "name": "CVE-2022-0235",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-0235"
    },
    {
      "name": "CVE-2022-39138",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39138"
    },
    {
      "name": "CVE-2022-39141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39141"
    },
    {
      "name": "CVE-2022-39139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39139"
    },
    {
      "name": "CVE-2020-12762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-12762"
    },
    {
      "name": "CVE-2022-39148",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39148"
    },
    {
      "name": "CVE-2021-23841",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-23841"
    },
    {
      "name": "CVE-2022-39142",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39142"
    },
    {
      "name": "CVE-2022-39149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39149"
    },
    {
      "name": "CVE-2022-39151",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39151"
    },
    {
      "name": "CVE-2021-25217",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-25217"
    },
    {
      "name": "CVE-2022-0396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-0396"
    },
    {
      "name": "CVE-2021-3749",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3749"
    },
    {
      "name": "CVE-2022-39150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39150"
    }
  ],
  "initial_release_date": "2022-09-13T00:00:00",
  "last_revision_date": "2022-09-13T00:00:00",
  "links": [],
  "reference": "CERTFR-2022-AVI-814",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2022-09-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSIEMENS. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits SIEMENS",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-589975 du 13 septembre 2022",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-589975.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-638652 du 13 septembre 2022",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-638652.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-459643 du 13 septembre 2022",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-459643.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-518824 du 13 septembre 2022",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-518824.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-637483 du 13 septembre 2022",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-637483.html"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-39142 (GCVE-0-2022-39142)

GHSA-2FFG-72C9-5FQW

FKIE_CVE-2022-39142

CNVD-2022-62992

GSD-2022-39142

CERTFR-2022-AVI-814

Solution

Tags

Sightings

Nomenclature