CVE-2024-45463 Siemens CVE debrief

Who should care

Organizations using Siemens Teamcenter Visualization for product lifecycle management and digital mockup review, particularly in manufacturing, aerospace, automotive, and industrial design sectors where WRL/VRML files are commonly exchanged. Security teams in OT/ICS environments should prioritize patching due to the potential for code execution in engineering workstations that may have access to sensitive design data or production systems.

Technical summary

The vulnerability exists in the WRL (VRML) file parsing component of Siemens Teamcenter Visualization. When processing a malformed WRL file, the application reads beyond the bounds of an allocated memory structure. This memory safety defect can be exploited to achieve arbitrary code execution within the context of the running process. The attack requires local access and user interaction (opening a malicious file), but successful exploitation grants full control over the process with high impact to confidentiality, integrity, and availability.

Defensive priority

high

Recommended defensive actions

• Apply vendor patches: update Teamcenter Visualization V14.2 to V14.2.0.14 or later, V14.3 to V14.3.0.12 or later, and V2312 to V2312.0008 or later
• Implement application whitelisting to prevent execution of untrusted Teamcenter Visualization instances
• Train users to avoid opening untrusted WRL files from unknown sources
• Consider network segmentation for systems running affected Teamcenter Visualization versions
• Monitor for suspicious WRL file handling activity in enterprise environments

Evidence notes

Vulnerability disclosed via CISA ICS advisory ICSA-24-347-09 with Siemens SSA-645131 as primary technical reference. Affected products confirmed through CSAF product tree with three distinct product IDs. CVSS vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H indicates local attack vector requiring user interaction but resulting in complete confidentiality, integrity, and availability compromise.

Official resources