CVE-2024-32058 Siemens CVE debrief

Who should care

Organizations using Siemens Simcenter Femap for finite element analysis and engineering simulation, particularly in industrial manufacturing, aerospace, automotive, and energy sectors. Security teams responsible for CAD/CAE software deployments and industrial control system environments should prioritize patching.

Technical summary

CVE-2024-32058 is a memory corruption vulnerability in Siemens Simcenter Femap, a finite element analysis and pre/post-processing application used in engineering workflows. The flaw occurs during parsing of malformed IGS (Initial Graphics Exchange Specification) files, which are commonly used for CAD data exchange. Successful exploitation allows an attacker to execute arbitrary code in the context of the current process. The attack requires local access and user interaction (opening a malicious file), with no privileges required. The vulnerability was assigned CVSS 3.1 score 7.8 (HIGH severity). Siemens has addressed this issue in version V2406. Users should apply the vendor update and exercise caution when opening IGS files from untrusted sources.

Defensive priority

high

Recommended defensive actions

• Update Simcenter Femap to version V2406 or later as provided by Siemens
• Implement user awareness training to avoid opening untrusted IGS files in Simcenter Femap
• Apply defense-in-depth strategies for industrial control systems environments per CISA guidance
• Restrict file execution permissions and implement application whitelisting where feasible
• Monitor for anomalous process behavior in Simcenter Femap deployments

Evidence notes

The vulnerability description and remediation guidance are derived from CISA CSAF advisory ICSA-24-193-04, which references Siemens security advisory SSA-064222. The CVSS 3.1 vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H indicates a local attack vector requiring user interaction, with high impacts to confidentiality, integrity, and availability.

Official resources