← voltar
CVE-2021-46152

CVE-2021-46152

EPSS 1.5%CWE-843
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 1.5%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
09 fev 2022Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a type confusion vulnerability while parsing NEU files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-14643, ZDI-CAN-14644, ZDI-CAN-14755, ZDI-CAN-15183)
Produtos afetados
Siemens · Simcenter Femap V2020.2Siemens · Simcenter Femap V2021.1

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://cert-portal.siemens.com/productcert/pdf/ssa-609880.pdfhttps://www.zerodayinitiative.com/advisories/ZDI-22-293/https://www.zerodayinitiative.com/advisories/ZDI-22-294/https://www.zerodayinitiative.com/advisories/ZDI-22-295/https://www.zerodayinitiative.com/advisories/ZDI-22-296/