2 matches found
CVE-2022-37864
Siemens Solid Edge prior to SE2022MP9 is affected by CVE-2022-37864, a heap-based buffer overflow when parsing DWG files. It allows code execution in the current process with local attack vector and user interaction required. Mitigation: update to SE2022MP9 or later or avoid untrusted DWG files; ...
Siemens Solid Edge
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: Solid Edge Vulnerability: Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code in the current process. 3...