PatchSiren cyber security CVE debrief
CVE-2024-33493 Siemens CVE debrief
CVE-2024-33493 is a high-severity out-of-bounds read vulnerability in Siemens Solid Edge, published on 2024-05-14. The flaw occurs when parsing specially crafted PAR (part) files, allowing an attacker to execute arbitrary code in the context of the current process. The vulnerability requires local access and user interaction, with an attacker needing to convince a victim to open a malicious file. Siemens has released a vendor fix in V224.0 Update 5, and CISA recommends avoiding untrusted PAR files as an interim mitigation. No known exploitation in ransomware campaigns has been reported, and the vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog.
- Vendor
- Siemens
- Product
- Solid Edge
- CVSS
- HIGH 7.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2024-05-14
- Original CVE updated
- 2024-05-14
- Advisory published
- 2024-05-14
- Advisory updated
- 2024-05-14
Who should care
Organizations using Siemens Solid Edge for CAD/CAM/CAE operations, particularly those exchanging PAR files with external partners or receiving files from untrusted sources. Engineering firms, manufacturing organizations, and supply chain participants in Siemens PLM ecosystems should prioritize patching.
Technical summary
The vulnerability exists in the PAR file parsing component of Siemens Solid Edge, where an out-of-bounds read past the end of an allocated structure can be triggered by a malformed file. This memory safety defect may lead to code execution within the current process context. The attack vector requires local access and user interaction (opening a malicious file), with no privileges required. The confidentiality, integrity, and availability impacts are all rated high.
Defensive priority
high
Recommended defensive actions
- Apply Siemens Solid Edge V224.0 Update 5 or later to remediate this vulnerability
- Avoid opening untrusted PAR files in Solid Edge as an interim defensive measure
- Implement application whitelisting and least-privilege execution for CAD workstations handling external files
- Monitor for suspicious PAR file attachments in email and collaboration platforms
- Review and update incident response procedures for CAD/PLM environment compromises
Evidence notes
Vulnerability details sourced from CISA CSAF advisory ICSA-24-137-09 and Siemens security advisory SSA-589937. CVSS 3.1 vector: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.
Official resources
-
CVE-2024-33493 CVE record
CVE.org
-
CVE-2024-33493 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2024-05-14