CVSS Score of 10 (low)


Published Jul 11, 2023
Updated: Jul 18, 2023
CWE ID 122
CWE ID 787


A vulnerability, identified as CVE-2023-37247, has been found in Tecnomatix Plant Simulation V2201 (all versions < V2201.0008) and Tecnomatix Plant Simulation V2302 (all versions < V2302.0002). This vulnerability involves a heap-based buffer overflow when parsing specially crafted PAR files. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the current process context. The National Vulnerability Database (NVD) rates the severity of this vulnerability as high, with a base score of 7.8 out of 10. To remediate this issue, it is recommended to update the affected software versions to V2201.0008 or later for Tecnomatix Plant Simulation V2201 and to V2302.0002 or later for Tecnomatix Plant Simulation V2302. Organizations using these software versions should prioritize patching to prevent potential attacks that could result in high impact on confidentiality, integrity, and availability of their systems.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-37247 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options