PatchSiren cyber security CVE debrief
CVE-2024-47940 Siemens CVE debrief
CVE-2024-47940 is a high-severity vulnerability in Siemens Solid Edge SE2024, published on November 12, 2024. The vulnerability stems from an out-of-bounds read past the end of an allocated structure when parsing specially crafted PSM (ParSolid Model) files. This memory safety defect could allow an attacker to execute arbitrary code within the context of the current process. The CVSS 3.1 score of 7.8 reflects high impacts to confidentiality, integrity, and availability, with a local attack vector requiring user interaction through opening a malicious file. Siemens has addressed this issue in V224.0 Update 9 and later versions. Users should apply the vendor fix promptly and avoid opening untrusted PSM files as an interim mitigation.
- Vendor
- Siemens
- Product
- Solid Edge SE2024
- CVSS
- HIGH 7.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2024-11-12
- Original CVE updated
- 2024-11-12
- Advisory published
- 2024-11-12
- Advisory updated
- 2024-11-12
Who should care
Engineering organizations using Siemens Solid Edge SE2024 for CAD/CAM/CAE operations, particularly those exchanging PSM files with external partners or accessing files from untrusted sources. Security teams in manufacturing and industrial sectors should prioritize patching due to the high CVSS score and potential for code execution on engineering workstations.
Technical summary
The vulnerability exists in the PSM file parsing component of Siemens Solid Edge SE2024. An out-of-bounds read occurs when processing malformed PSM files, reading memory beyond allocated structure boundaries. This can lead to information disclosure and potentially arbitrary code execution within the process context. The attack requires local access and user interaction to open a malicious file. The fix in V224.0 Update 9 corrects the boundary checking during PSM parsing operations.
Defensive priority
high
Recommended defensive actions
- Apply Siemens Solid Edge V224.0 Update 9 or later to remediate the out-of-bounds read vulnerability
- Implement user awareness training to prevent opening untrusted PSM files from unknown sources
- Consider application whitelisting and endpoint protection to restrict execution of unapproved Solid Edge file handlers
- Review and apply CISA ICS recommended practices for defense-in-depth strategies in engineering workstation environments
Evidence notes
Vulnerability description and remediation details sourced from CISA CSAF advisory ICSA-24-319-05, which references Siemens security advisory SSA-351178. CVSS vector confirms local attack vector with user interaction required.
Official resources
-
CVE-2024-47940 CVE record
CVE.org
-
CVE-2024-47940 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2024-11-12