CVE-2024-33654
First published: Tue Jul 09 2024(Updated: )
A vulnerability has been identified in Simcenter Femap (All versions < V2406). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted BMP files. This could allow an attacker to execute code in the context of the current process.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Simcenter Femap | <2406.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-33654?
CVE-2024-33654 is classified as a high severity vulnerability due to its potential to allow code execution.
How do I fix CVE-2024-33654?
To fix CVE-2024-33654, update to Siemens Simcenter Femap version 2406 or later.
What types of attacks can exploit CVE-2024-33654?
CVE-2024-33654 can be exploited through specially crafted BMP files leading to an out of bounds read.
Is CVE-2024-33654 present in all versions of Simcenter Femap?
CVE-2024-33654 affects all versions of Simcenter Femap below version 2406.
What impact does CVE-2024-33654 have on system security?
CVE-2024-33654 could allow an attacker to execute arbitrary code within the context of the application, compromising system security.
- agent/weakness
- agent/type
- agent/references
- agent/first-publish-date
- agent/description
- agent/severity
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/source
- vendor/siemens
- canonical/siemens simcenter femap