Primary

Context

Siemens Simcenter Products Heap-Based Buffer Overflow Vulnerability Allowing Code Execution

Vulnerability

Patched

A heap-based buffer overflow vulnerability has been identified in Siemens Simcenter Femap and Simcenter Nastran, all versions prior to V2512. The vulnerability arises while parsing specially crafted NDB files, which could enable an attacker to execute code in the context of the current process.

Impact

Exploitation of this vulnerability could lead to a heap-based buffer overflow, allowing for arbitrary code execution in the context of the affected application process.

Remediation

Users are advised to update to version V2512 or later. For Simcenter Femap, visit the Siemens Support page for the product. For Simcenter Nastran, also refer to the Siemens Support page for the product.

Added: Feb 10, 2026, 10:45 AM

Updated: Feb 10, 2026, 3:33 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

3.6

remediation

7.9

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

3.6

remediation

7.9

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens Simcenter Products Heap-Based Buffer Overflow Vulnerability Allowing Code Execution

Vulnerability

Impact

Remediation

Affected Products

Siemens Simcenter Femap

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating