CVE-2024-24925

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Feb 13, 2024

CWE ID 824

Summary

CVE-2024-24925 is a newly identified vulnerability affecting Simcenter Femap (all versions prior to V2306.0000). The issue lies in the application's handling of specially crafted Catia MODEL files, leading to uninitialized pointer access. Malicious actors can exploit this vulnerability to execute arbitrary code in the context of the current process. This security flaw, as reported in ZDI-CAN-22060, poses a significant risk to users and requires immediate attention from Simcenter and its customers.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uXZKRO
https://www.cve.org/CVERecord?id=CVE-2024-24925
https://nvd.nist.gov/vuln/detail/CVE-2024-24925

Back to Vulnerability Database

CVE-2024-24925

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations