CVE-2025-25175

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 13, 2025

CWE ID 119

Summary

CVE-2025-25175 is a memory corruption vulnerability affecting Simcenter Femap V2401 (all versions prior to V2401.0003) and Simcenter Femap V2406 (all versions prior to V2406.0002). The issue arises during the parsing of specially crafted .NEU files in the application. An attacker can exploit this vulnerability to execute code in the context of the current process. (Note: The ZDI-CAN-25443 reference is for the Zero Day Initiative's advisory on this issue.) This vulnerability poses a significant risk to users if not addressed in a timely manner. Upgrading to the patched versions is strongly recommended.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

SimCenter

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners