Lucene search

CVE-2022-46349

🗓️ 13 Dec 2022 16:25:15Reported by siemensType

A vulnerability in Parasolid and Solid Edge allows for code execution via crafted X_B file

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Vulnrichment	CVE-2022-46349	13 Dec 202200:00	–	vulnrichment
Zero Day Initiative	Siemens Solid Edge Viewer X_B File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability	20 Dec 202200:00	–	zdi
Cvelist	CVE-2022-46349	13 Dec 202200:00	–	cvelist
CNVD	Siemens Parasolid out-of-bounds write vulnerability (CNVD-2022-87977)	14 Dec 202200:00	–	cnvd
RedhatCVE	CVE-2022-46349	5 Feb 202520:57	–	redhatcve
NVD	CVE-2022-46349	13 Dec 202216:15	–	nvd
Prion	Out-of-bounds	13 Dec 202216:15	–	prion
ICS	Siemens Parasolid	13 Dec 202200:00	–	ics
ICS	Siemens Solid Edge	14 Feb 202300:00	–	ics

Nvd

Node

siemens parasolidRange33.1–33.1.264

siemens parasolidRange34.0–34.0.252

siemens parasolidRange34.1–34.1.242

siemens parasolidRange35.0–35.0.170

[
  {
    "vendor": "Siemens",
    "product": "Parasolid V33.1",
    "versions": [
      {
        "version": "All versions < V33.1.264",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Parasolid V34.0",
    "versions": [
      {
        "version": "All versions < V34.0.252",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Parasolid V34.1",
    "versions": [
      {
        "version": "All versions < V34.1.242",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Parasolid V35.0",
    "versions": [
      {
        "version": "All versions < V35.0.170",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Solid Edge SE2022",
    "versions": [
      {
        "version": "All versions < V222.0MP12",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Solid Edge SE2022",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Solid Edge SE2023",
    "versions": [
      {
        "version": "All versions < V223.0Update2",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-588101.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Dec 2022 16:15Current

7.5High risk

Vulners AI Score7.5

CVSS37.8

EPSS0.00095

SSVC

CWE-125