An out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files has been found in the following applications. The applications listed above have been updated to fix these issues. The vendors have been notified about the issues and have released regression patches to resolve these issues. ParaSolve V30.0 (All versions V30.0.1) Parasolid V33.1 (All versions V33.1.262) Parasolid V34.0 (All versions V34.0.252) Parasolid V34.1 (All versions V34.1.242) Parasolid V35.0 (All versions V35.0.161) Parasolid V35.0 (All versions >= V35.0.161 V35.0.164) Simcenter Femap V2022.1 (All versions V2022.1.3) Simcenter Femap V2022.2 (All versions V2022.2.2) An out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files has been found in the following applications. The applications listed above have been updated to fix these issues. The vendors have been notified about the issues and have released regression patches to resolve these issues. An out of bounds write past the end of an allocated buffer while parsing specially crafted X_T files has been found in the following applications. The applications listed
Solution:
Apply the patch for the CVE-2022-39148 before updating to release V35.0.164
Parasolid
& Parasolvers Updates
The vendors have released a regression patch that resolves these issues.
CVSS v3 Measures
1. Remote Code Execution
2. Access Privileges Bypass
3. Authentication Bypass
4. File Deletion
Product version affected by this issue
Product version affected by this issue:
Parasolid V33.1 (All versions V33.1.262) Parasolid V34.0 (All versions V34.0.252) Parasolid V35.0 (All versions V35.0.161) Simcenter Femap V2022.2 (All versions V2022.2.2)
Timeline
Published on: 09/13/2022 10:15:00 UTC
Last modified on: 09/13/2022 15:13:00 UTC