Lucene search

[email protected]NVD:CVE-2021-22645

HistoryFeb 23, 2021 - 4:15 a.m.

CVE-2021-22645

2021-02-2304:15:14

CWE-357

[email protected]

web.nvd.nist.gov

luxion keyshot

viewer

network rendering

keyvr

remote network share

.bip documents

attack

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

37.0%

JSON

Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are vulnerable to an attack because the .bip documents display a “load” command, which can be pointed to a .dll from a remote network share. As a result, the .dll entry point can be executed without sufficient UI warning.

Affected configurations

Nvd

Node

luxionkeyshotRange<10.1

luxionkeyshot_network_renderingRange<10.1

luxionkeyshot_viewerRange<10.1

luxionkeyvrRange<10.1

Node

siemenssolid_edge_se2020_firmware

AND

siemenssolid_edge_se2020Match-

Node

siemenssolid_edge_se2021_firmware

AND

siemenssolid_edge_se2021Match-

VendorProductVersionCPE
luxionkeyshot*cpe:2.3:a:luxion:keyshot:*:*:*:*:*:*:*:*
luxionkeyshot_network_rendering*cpe:2.3:a:luxion:keyshot_network_rendering:*:*:*:*:*:*:*:*
luxionkeyshot_viewer*cpe:2.3:a:luxion:keyshot_viewer:*:*:*:*:*:*:*:*
luxionkeyvr*cpe:2.3:a:luxion:keyvr:*:*:*:*:*:*:*:*
siemenssolid_edge_se2020_firmware*cpe:2.3:o:siemens:solid_edge_se2020_firmware:*:*:*:*:*:*:*:*
siemenssolid_edge_se2020-cpe:2.3:h:siemens:solid_edge_se2020:-:*:*:*:*:*:*:*
siemenssolid_edge_se2021_firmware*cpe:2.3:o:siemens:solid_edge_se2021_firmware:*:*:*:*:*:*:*:*
siemenssolid_edge_se2021-cpe:2.3:h:siemens:solid_edge_se2021:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
luxion	keyshot	*	cpe:2.3:a:luxion:keyshot::::::::
luxion	keyshot_network_rendering	*	cpe:2.3:a:luxion:keyshot_network_rendering::::::::
luxion	keyshot_viewer	*	cpe:2.3:a:luxion:keyshot_viewer::::::::
luxion	keyvr	*	cpe:2.3:a:luxion:keyvr::::::::
siemens	solid_edge_se2020_firmware	*	cpe:2.3:o:siemens:solid_edge_se2020_firmware::::::::
siemens	solid_edge_se2020	-	cpe:2.3:h:siemens:solid_edge_se2020:-:::::::*
siemens	solid_edge_se2021_firmware	*	cpe:2.3:o:siemens:solid_edge_se2021_firmware::::::::
siemens	solid_edge_se2021	-	cpe:2.3:h:siemens:solid_edge_se2021:-:::::::*

References

cert-portal.siemens.com/productcert/pdf/ssa-231216.pdf

us-cert.cisa.gov/ics/advisories/icsa-21-035-01

www.zerodayinitiative.com/advisories/ZDI-21-323/

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

37.0%

JSON

Related for NVD:CVE-2021-22645

zdi1 cvelist1 prion1 cve1 ics1