描述
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13775)
AI分析AI驱动
受影响产品
siemenssolid_edge_se2021_firmware
siemenssolid_edge_se2021
-
参考资料
- https://cert-portal.siemens.com/productcert/pdf/ssa-818688.pdfPatchVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-1113/Third Party AdvisoryVDB Entry
- https://cert-portal.siemens.com/productcert/pdf/ssa-818688.pdfPatchVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-1113/Third Party AdvisoryVDB Entry