CVE-2024-32064 Siemens CVE debrief

Who should care

Organizations using Siemens Simcenter Femap for engineering analysis and simulation, particularly those in industrial, manufacturing, and critical infrastructure sectors where IGS file exchange is common.

Technical summary

The vulnerability exists in the IGS file parsing component of Simcenter Femap. A specially crafted IGS file triggers an out-of-bounds read past the end of an allocated structure, which can be leveraged to achieve arbitrary code execution in the context of the current process. The attack requires local access and user interaction (opening a malicious file), with no privileges required. The confidentiality, integrity, and availability impact are all rated HIGH.

Defensive priority

HIGH

Recommended defensive actions

• Update Simcenter Femap to version V2406 or later per vendor guidance
• Avoid opening untrusted IGS files in affected applications
• Apply defense-in-depth practices for industrial control systems per CISA guidance

Evidence notes

Vulnerability disclosed via CISA ICS advisory ICSA-24-193-04 and Siemens security advisory SSA-064222. CVSS 3.1 vector: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. Affected product confirmed as Simcenter Femap.

Official resources