Rewterz Threat Advisory – CVE-2022-22584 – Apple macOS ColorSync ICC File Vulnerability

March 17, 2022

Rewterz Threat Alert – Emotet – Active IOCs

March 17, 2022

Rewterz Threat Advisory – ICS: Siemens Simcenter Femap Vulnerability

March 17, 2022

Severity

High

Analysis Summary

CVE-2021-46699

Siemens Simcenter Femap is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when parsing BDF files. By persuading a victim to open a specially-crafted BDF files, a remote attacker could overflow a buffer and execute arbitrary code on the system.

Impact

Buffer Overflow

Indicators Of Compromise

CVE

CVE-2021-46699

Affected Vendors

Siemens

Affected Products

Siemens Simcenter Femap 2020.2
Siemens Simcenter Femap 2021.1

Remediation

Refer to Siemens Security Advisory for the patch, upgrade, or suggested workaround information.

Siemens Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2022-22584 – Apple macOS ColorSync ICC File Vulnerability

Rewterz Threat Alert – Emotet – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.