Siemens

Solid Edge Se2021 Firmware

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2021-37178

  • EPSS 0.22%
  • Published 10.08.2021 11:15:09
  • Last modified 21.11.2024 06:14:48

A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). An XML external entity injection vulnerability in the underlying XML parser could cause the affected application to disclose arbitrary files to remote attackers by l...

7.8

CVE-2021-37179

  • EPSS 0.53%
  • Published 10.08.2021 11:15:09
  • Last modified 21.11.2024 06:14:48

A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library in affected application lacks proper validation while parsing user-supplied OBJ files that could lead to a use-after-free condition. An atta...

7.8

CVE-2021-37180

  • EPSS 0.38%
  • Published 10.08.2021 11:15:09
  • Last modified 21.11.2024 06:14:48

A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attac...

8.8

CVE-2021-31342

  • EPSS 0.58%
  • Published 08.06.2021 20:15:08
  • Last modified 21.11.2024 06:05:27

The ugeom2d.dll library in all versions of Solid Edge SE2020 before 2020MP14 and all versions of Solid Edge SE2021 before SE2021MP5 lack proper validation of user-supplied data when parsing DFT files. This could result in an out-of-bounds write past ...

8.8

CVE-2021-31343

  • EPSS 0.78%
  • Published 08.06.2021 20:15:08
  • Last modified 21.11.2024 06:05:27

The jutil.dll library in all versions of Solid Edge SE2020 before 2020MP14 and all versions of Solid Edge SE2021 before SE2021MP5 lack proper validation of user-supplied data when parsing DFT files. This could result in an out-of-bounds write past th...

7.8

CVE-2021-27490

  • EPSS 0.3%
  • Published 27.05.2021 17:15:07
  • Last modified 21.11.2024 05:58:05

Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code.

7.8

CVE-2021-27488

  • EPSS 0.3%
  • Published 27.05.2021 16:15:08
  • Last modified 21.11.2024 05:58:05

Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files. This could result in an out-of-bounds...

5.5

CVE-2021-27492

  • EPSS 0.7%
  • Published 27.05.2021 16:15:08
  • Last modified 21.11.2024 05:58:05

When opening a specially crafted 3DXML file, the application containing Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior could disclose arbitrary files to remo...

7.8

CVE-2021-27494

  • EPSS 0.62%
  • Published 27.05.2021 16:15:08
  • Last modified 21.11.2024 05:58:06

Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing STP files. This could result in a stack-based buffer...

7.8

CVE-2021-27496

  • EPSS 0.3%
  • Published 27.05.2021 16:15:08
  • Last modified 21.11.2024 05:58:06

Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing PRT files. This could lead to pointer dereferences o...