Full Report
Parasolid is affected by out of bounds write vulnerabilities that could be triggered when the application reads files in X_T format. If a user is tricked to open a malicious file with the affected applications, an attacker could leverage the vulnerability to perform remote code execution in the context of the current process. Siemens has released updates for the affected products and recommends to update to the latest versions.
Analysis Summary
# Vulnerability: Out-of-Bounds Write in Parasolid X_T File Parsing
## CVE Details
- CVE ID: CVE-2023-41032, CVE-2023-41033
- CVSS Score: 7.8 (High based on provided vector details)
- CWE: CWE-787: Out-of-bounds Write Vulnerability
## Affected Systems
- Products: Parasolid (3D geometric modeling tool)
- Versions:
- **CVE-2023-41032**: All versions prior to V34.1.258, V35.0.253, V35.1.184, and V36.0.142.
- **CVE-2023-41033**: All versions prior to V35.0.260, V35.1.246, and V36.0.156.
- Configurations: Applications utilizing Parasolid to read files in the X\_T format.
## Vulnerability Description
The affected versions of Parasolid contain out-of-bounds write vulnerabilities in the parsing logic for specially crafted X\_T files. Successful exploitation could allow an unauthenticated attacker to achieve Remote Code Execution (RCE) in the context of the application process by tricking a user into opening a malicious X\_T file.
## Exploitation
- Status: PoC available (Implied by CVSS vector details noting Exploitation-related metrics, specifically E:P (Proof-of-Concept) in the vector strings: `E:P/RL:O/RC:C`)
- Complexity: Low (AC:L - Attack Complexity Low)
- Attack Vector: Local (AV:L - Attack Vector Local, implying the attacker needs some local access or the user must be tricked into loading a file)
## Impact
- Confidentiality: High (C:H)
- Integrity: High (I:H)
- Availability: High (A:H)
## Remediation
### Patches
Customers must update to the specified patch versions or later:
- **For CVE-2023-41032**: Update to Parasolid V34.1.258, V35.0.253, V35.1.184, or V36.0.142 or later.
- **For CVE-2023-41033**: Update to Parasolid V35.0.260, V35.1.246, or V36.0.156 or later.
### Workarounds
- Do not open untrusted X\_T files in affected Parasolid instances.
- Adhere to general security recommendations provided by Siemens, including protecting network access to devices and following operational guidelines for Industrial Security.
## Detection
- Indicators of Compromise: Creation or modification of files associated with unknown or untrusted sources being processed by Parasolid applications. System behavior changes indicative of an arbitrary code execution post-exploitation.
- Detection methods and tools: Standard endpoint detection and response (EDR) tools monitoring for unexpected process spawns or memory corruption events within applications utilizing the affected Parasolid component after file loading.
## References
- Vendor Advisories: Siemens Security Advisory SSA-190839
- Relevant links:
- Vendor Portal Link (for specific remedial product information): hxxps://support.sw.siemens.com/en-US/product/258316782/
- Siemens Industrial Security Guidelines: hxxps://www.siemens.com/cert/operational-guidelines-industrial-security
- Siemens Security Advisories contact: hxxps://www.siemens.com/cert/advisories