Siemens Solid Edge Buffer Overflow Vulnerability (CNVD-2021-61127)

Siemens Solid Edge is a 3D CAD software from Siemens, Germany. The software can be used in industries such as part design, assembly design, sheet metal design, welding design, etc. A buffer overflow vulnerability exists in Siemens Solid Edge, which stems from the lack of proper validation of the PSKERNEL.dll library when parsing user-supplied OBJ files, and can be exploited by an attacker to cause out-of-bounds access to uninitialized pointers.