CVE-2024-52571

Summary

CVE-2024-52571 is a newly identified vulnerability affecting various versions of Teamcenter Visualization (V14.2, V14.3, V2312, V2406), Tecnomatix Plant Simulation (V2302, V2404). These applications contain an out-of-bounds write vulnerability during WRL file parsing. An attacker can exploit this flaw by providing a specially crafted WRL file, potentially leading to arbitrary code execution in the context of the current process. (ZDI-CAN-24485) This vulnerability can impact users running affected versions of Teamcenter Visualization and Tecnomatix Plant Simulation applications. The out-of-bounds write vulnerability, as described in CVE-2024-52571, arises during WRL file parsing. A maliciously crafted WRL file can be used by an attacker to execute arbitrary code within the application, leading to possible security breaches in the affected systems. It is advised that users promptly update to the patched versions to mitigate this risk. In summary, the identified vulnerability (CVE-2024-52571) affects multiple versions of Teamcenter Visualization and Tecnomatix Plant Simulation applications, allowing attackers to execute arbitrary code through an out-of-bounds write vulnerability in WRL file parsing. Users should promptly update to the patched versions to mitigate potential risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.