CVE-2021-37203

🗓️ 14 Sep 2021 10:47:56Reported by siemensType

A vulnerability in NX 1980 Series & Solid Edge SE2021 allows out-of-bounds read, posing denial-of-service or memory information

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability in the dynamically linked library plmxmlAdapterIFC.dll of the software for Siemens NX 1980 and Siemens Solid Edge design, development, and production software allows a attacker to cause service failures or gain unauthorized access to protected information.	30 Sep 202100:00	–	bdu_fstec
Circl	CVE-2021-37203	14 Sep 202114:20	–	circl
CNNVD	Siemens NX 缓冲区错误漏洞	14 Sep 202100:00	–	cnnvd
CNVD	Siemens IFC adapter in NX out-of-bounds read vulnerability	15 Sep 202100:00	–	cnvd
CVE	CVE-2021-37203	14 Sep 202110:47	–	cve
EUVD	EUVD-2021-23777	7 Oct 202500:30	–	euvd
ICS	Siemens NX	14 Sep 202100:00	–	ics
ICS	Siemens Solid Edge	28 Sep 202100:00	–	ics
NVD	CVE-2021-37203	14 Sep 202111:15	–	nvd
OSV	CVE-2021-37203	14 Sep 202111:15	–	osv

[
  {
    "product": "NX 1980 Series",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V1984"
      }
    ]
  },
  {
    "product": "Solid Edge SE2021",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < SE2021MP8"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf

28 Sep 2021 11:12Current

6.8Medium risk

Vulners AI Score6.8

EPSS0.00617

CWE-125