How severe is CVE-2021-37180?

CVE-2021-37180 has a CVSS v3 score of 7.8 (HIGH).

CVE-2021-37180

Name: solid_edge_se2021
Author: siemens

7.8HIGH

A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of b

Veröffentlicht: 8/10/2021Aktualisiert: 11/21/2024

Beschreibung

A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13775)

KI-AnalyseKI-gestützt

Betroffene Produkte

siemenssolid_edge_se2021_firmware

siemenssolid_edge_se2021

Referenzen

https://cert-portal.siemens.com/productcert/pdf/ssa-818688.pdf
PatchVendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-1113/
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-818688.pdf
PatchVendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-1113/
Third Party AdvisoryVDB Entry