{"cve":{"cve_id":"CVE-2024-47046","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00242,"epss_percentile":0.15071,"epss_as_of":"2026-06-23","description":"A vulnerability has been identified in Simcenter Femap V2306 (All versions), Simcenter Femap V2401 (All versions), Simcenter Femap V2406 (All versions). The affected application is vulnerable to memory corruption while parsing specially crafted BDF files. This could allow an attacker to execute code in the context of the current process.","published_at":"2024-10-08T08:40:45.216000Z","last_modified_at":null,"cvss_v3_score":7.8,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":7.3,"cvss_v4_vector":"CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","cvss_v4_severity":"HIGH","ssvc_decision":null,"ssvc_exploitation":"none","ssvc_automatable":false,"ssvc_technical_impact":"total","cwes":["CWE-119"],"nvd_references":["https://cert-portal.siemens.com/productcert/html/ssa-852501.html","https://cert-portal.siemens.com/productcert/html/ssa-881356.html"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-29T02:09:06.230884Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"R","value_label":"Required"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"H","value_label":"High"},{"metric":"AT","name":"Attack Requirements","value":"N","value_label":"None"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"P","value_label":"Passive"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"H","value_label":"High"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"N","value_label":"None"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"N","value_label":"None"},{"metric":"SA","name":"Availability (Subsequent System)","value":"N","value_label":"None"}]},"affected":[{"vendor_slug":"siemens","vendor_name":"Siemens","product_slug":"simcenter-femap-v2306","product_name":"Simcenter Femap V2306","version_start":"0","version_start_inclusive":true,"version_end":"*","version_end_inclusive":false,"cpe23_uri":"cve5:siemens:simcenter-femap-v2306:0:*"},{"vendor_slug":"siemens","vendor_name":"Siemens","product_slug":"simcenter-femap-v2401","product_name":"Simcenter Femap V2401","version_start":"0","version_start_inclusive":true,"version_end":"*","version_end_inclusive":false,"cpe23_uri":"cve5:siemens:simcenter-femap-v2401:0:*"},{"vendor_slug":"siemens","vendor_name":"Siemens","product_slug":"simcenter-femap-v2406","product_name":"Simcenter Femap V2406","version_start":"0","version_start_inclusive":true,"version_end":"*","version_end_inclusive":false,"cpe23_uri":"cve5:siemens:simcenter-femap-v2406:0:*"}],"exploit_refs":[],"news":[],"references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-852501.html","source_type":"MISC","tags":[]},{"url":"https://cert-portal.siemens.com/productcert/html/ssa-881356.html","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2024-10-08T08:40:45.216000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:37:59.364629Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:37:59.364629Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:37:59.364629Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:37:59.364629Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:37:59.364629Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:37:59.364629Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"ssvc_changed","at":"2026-06-29T02:09:06.230884Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T02:09:06.230884Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T02:09:06.230884Z","label":"SSVC decision revised","source":"vulnrichment"}]}