CVE-2024-52568 Siemens CVE debrief

Who should care

Organizations using Siemens Teamcenter Visualization for CAD data visualization and collaboration, particularly in industrial and manufacturing environments where WRL files may be exchanged between teams or received from external sources.

Technical summary

CVE-2024-52568 is a use-after-free vulnerability in Siemens Teamcenter Visualization affecting versions V14.2, V14.3, V2312, and V2406. The vulnerability exists in the WRL (VRML) file parsing functionality and can be triggered when a user opens a specially crafted WRL file. Successful exploitation allows an attacker to execute arbitrary code within the context of the current process. The vulnerability has a CVSS 3.1 score of 7.8 (HIGH severity) with the vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating local attack vector with low attack complexity but requiring user interaction. Siemens has released patched versions for all affected product lines.

Defensive priority

HIGH

Recommended defensive actions

• Update Teamcenter Visualization V14.2 to V14.2.0.14 or later
• Update Teamcenter Visualization V14.3 to V14.3.0.12 or later
• Update Teamcenter Visualization V2312 to V2312.0008 or later
• Update Teamcenter Visualization V2406 to V2406.0005 or later
• Avoid opening untrusted WRL files in affected applications until patches are applied

Evidence notes

The vulnerability was reported through the Zero Day Initiative (ZDI-CAN-24244) and disclosed in CISA advisory ICSA-24-347-09 on December 10, 2024. The advisory was revised on May 6, 2025, to fix typos.

Official resources