How severe is CVE-2021-37180?

CVE-2021-37180 has a CVSS v3 score of 7.8 (HIGH).

CVE-2021-37180

Name: solid_edge_se2021
Author: siemens

7.8HIGH

A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of b

Опубликовано: 8/10/2021Обновлено: 11/21/2024

Описание

A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13775)

ИИ-АнализНа базе ИИ

Затронутые продукты

siemenssolid_edge_se2021_firmware

siemenssolid_edge_se2021

Ссылки

https://cert-portal.siemens.com/productcert/pdf/ssa-818688.pdf
PatchVendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-1113/
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-818688.pdf
PatchVendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-1113/
Third Party AdvisoryVDB Entry