Detections
Analytics
Teamcenter Visualization WRL File Parsing Vulnerabilities
high Nessus Plugin ID 274365
Language:
Synopsis
The remote host is affected by multiple vulnerabilitiesDescription
Siemens Teamcenter Visualization contains multiple file-parsing vulnerabilities in its WRL-file reader that affect versions V14.2, V14.3, V2312, and V2406. If a user opens a specially crafted malicious WRL file, the application may crash or allow arbitrary code execution in the context of the current user.Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update to 14.2.0.14, 14.3.0.12, 2312.0008, 2406.0005 or later version.See Also
https://cert-portal.siemens.com/productcert/html/ssa-645131.html
Plugin Details
Severity: High
ID: 274365
File Name: teamcenter_visualization_SSA-645131.nasl
Version: 1.2
Type: local
Agent: windows
Family: Windows
Published: 11/7/2025
Updated: 11/18/2025
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 7.2
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2024-45463
CVSS v3
Risk Factor: High
Base Score: 7.8
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Information
CPE: cpe:/a:siemens:teamcenter_visualization
Required KB Items: installed_sw/Siemens Teamcenter Visualization
Exploit Ease: No known exploits are available
Patch Publication Date: 12/10/2024
Vulnerability Publication Date: 12/10/2024
Reference Information
CVE: CVE-2024-45463, CVE-2024-45464, CVE-2024-45465, CVE-2024-45466, CVE-2024-45467, CVE-2024-45468, CVE-2024-45469, CVE-2024-45470, CVE-2024-45471, CVE-2024-45472, CVE-2024-45473, CVE-2024-45474, CVE-2024-45475, CVE-2024-45476, CVE-2024-52565, CVE-2024-52566, CVE-2024-52567, CVE-2024-52568, CVE-2024-52569, CVE-2024-52570, CVE-2024-52571, CVE-2024-52572, CVE-2024-52573, CVE-2024-52574, CVE-2024-53041, CVE-2024-53242
IAVA: 2024-A-0816-S