85 matches found
CVE-2021-41539
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13773...
CVE-2021-41536
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13778...
CVE-2021-41540
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13776...
CVE-2021-41535
A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to...
Design/Logic Flaw
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13776...
Design/Logic Flaw
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13778...
Design/Logic Flaw
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13789...
CVE-2021-41536
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13778...
Design/Logic Flaw
A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to...
Information disclosure
A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application is vulnerable to information disclosure by unexpected access to an uninitialized pointer while parsing user-supplied...
CVE-2021-41539
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13773...
CVE-2021-41540
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13776...
CVE-2021-41538
CVE-2021-41538 : Siemens Solid Edge/NX OBJ parsing uninitialized pointer information disclosure. Affected products and versions include: NX 1953 Series (all versions < V1973.3700) and NX 1980 Series (all versions < V1988); Solid Edge SE2021 (all versions = V1973.3700, NX 1980 >= V1988, a...
CVE-2021-41536
Solid Edge SE2021 (all versions before SE2021MP8) contains a use-after-free in OBJ file parsing that can lead to code execution in the affected process (ZDI-21-1120). The issue is tied to the OBJ parser’s handling of objects/files and lacks validation, enabling an attacker to trigger arbitrary co...
CVE-2021-41536
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13778...
Siemens Solid Edge Viewer OBJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Siemens Solid Edge Post-release Reuse Vulnerability
Siemens Solid Edge is a 3D CAD software from Siemens, a German company. The software can be used in industries such as part design, assembly design, sheet metal design, welding design, etc. A security vulnerability exists in Siemens Solid Edge, which stems from the lack of proper validation of th...
Siemens Solid Edge Buffer Overflow Vulnerability (CNVD-2021-61127)
Siemens Solid Edge is a 3D CAD software from Siemens, Germany. The software can be used in industries such as part design, assembly design, sheet metal design, welding design, etc. A buffer overflow vulnerability exists in Siemens Solid Edge, which stems from the lack of proper validation of the...
CVE-2021-37179
A vulnerability has been identified in Solid Edge SE2021 All Versions SE2021MP7. The PSKERNEL.dll library in affected application lacks proper validation while parsing user-supplied OBJ files that could lead to a use-after-free condition. An attacker could leverage this vulnerability to execute...
CVE-2021-37180
A vulnerability has been identified in Solid Edge SE2021 All Versions SE2021MP7. The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attacker could leverage this vulnerability to execute co...