CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2021/09/28 12:15 p.m.•13 views

Design/Logic Flaw

6.8CVSS7.6AI score0.00678EPSS

Prion•added 2021/09/28 12:15 p.m.•21 views

Design/Logic Flaw

A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to...

6.8CVSS7.6AI score0.0059EPSS

Exploits0References3Affected Software7

Prion•added 2021/09/28 12:15 p.m.•15 views

Design/Logic Flaw

6.8CVSS7.6AI score0.00678EPSS

Cvelist•added 2021/09/28 11:12 a.m.•11 views

CVE-2021-41539

7.8AI score0.00678EPSS

Cvelist•added 2021/09/28 11:12 a.m.•13 views

CVE-2021-41540

7.8AI score0.00678EPSS

CVE•added 2021/09/28 11:12 a.m.•53 views

CVE-2021-41538

CVE-2021-41538 : Siemens Solid Edge/NX OBJ parsing uninitialized pointer information disclosure. Affected products and versions include: NX 1953 Series (all versions < V1973.3700) and NX 1980 Series (all versions < V1988); Solid Edge SE2021 (all versions = V1973.3700, NX 1980 >= V1988, a...

4.3CVSS3.4AI score0.0021EPSS

Exploits0References3Affected Software1

CVE•added 2021/09/28 11:12 a.m.•47 views

CVE-2021-41536

Solid Edge SE2021 (all versions before SE2021MP8) contains a use-after-free in OBJ file parsing that can lead to code execution in the affected process (ZDI-21-1120). The issue is tied to the OBJ parser’s handling of objects/files and lacks validation, enabling an attacker to trigger arbitrary co...

7.8CVSS7.6AI score0.00678EPSS

Cvelist•added 2021/09/28 11:12 a.m.•13 views

CVE-2021-41536

7.8AI score0.00678EPSS

Cvelist•added 2021/09/28 11:12 a.m.•14 views

CVE-2021-41535

7.8AI score0.0059EPSS

Exploits0References3

CNNVD•added 2021/09/28 12:0 a.m.•3 views

Siemens Solid Edge 资源管理错误漏洞

Solid Edge is a 3D CAD, parametric feature and synchronous technology solid modeling software. A post-release reuse vulnerability exists in Siemens Solid Edge versions prior to SE2021MP8 when parsing OBJ files. An attacker can exploit the vulnerability to execute code in the context of the curren...

7.8CVSS7.7AI score0.0059EPSS

Exploits0References11

CNNVD•added 2021/09/28 12:0 a.m.•1 views

Siemens Solid Edge 资源管理错误漏洞

Siemens Solid Edge, a 3D CAD, parametric feature and synchronous technology solid modeling software, is vulnerable to a post-release reuse vulnerability when parsing OBJ files in versions prior to Siemens Solid Edge SE2021MP8. An attacker could exploit this vulnerability to execute code in the...

7.8CVSS7.7AI score0.00678EPSS

Exploits0References7

CNNVD•added 2021/09/28 12:0 a.m.•2 views

Siemens Solid Edge 资源管理错误漏洞

Solid Edge is a 3D CAD, parametric feature and synchronous technology solid modeling software. versions prior to Siemens Solid Edge SE2021MP8 contain a post-release reuse vulnerability when parsing OBJ files. An attacker could exploit this vulnerability to execute code in the context of the curre...

7.8CVSS7.7AI score0.00678EPSS

Exploits0References7

Zero Day Initiative•added 2021/09/24 12:0 a.m.•19 views

Siemens Solid Edge Viewer OBJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6AI score0.0038EPSS

Zero Day Initiative•added 2021/09/24 12:0 a.m.•20 views

Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.9AI score0.00533EPSS

OSV•added 2021/08/23 7:42 p.m.•18 views

GHSA-27WQ-QX3Q-FXM9 Improper Handling of Unexpected Data Type in ced

Impact In ced v0.1.0, passing data types other than Buffer causes the Node.js process to crash. Patches The problem has been patched in ced v1.0.0. You can upgrade from v0.1.0 without any breaking changes. Workarounds Before passing an argument to ced, verify it’s a Buffer using Buffer.isBufferob...

7.5CVSS7.5AI score0.00577EPSS

Exploits1References5

CNVD•added 2021/08/11 12:0 a.m.•15 views

Siemens Solid Edge Buffer Overflow Vulnerability (CNVD-2021-61127)

Siemens Solid Edge is a 3D CAD software from Siemens, Germany. The software can be used in industries such as part design, assembly design, sheet metal design, welding design, etc. A buffer overflow vulnerability exists in Siemens Solid Edge, which stems from the lack of proper validation of the...

7.8CVSS4.8AI score0.0038EPSS

CNVD•added 2021/08/11 12:0 a.m.•17 views

Siemens Solid Edge Post-release Reuse Vulnerability

Siemens Solid Edge is a 3D CAD software from Siemens, a German company. The software can be used in industries such as part design, assembly design, sheet metal design, welding design, etc. A security vulnerability exists in Siemens Solid Edge, which stems from the lack of proper validation of th...

7.8CVSS4.2AI score0.00533EPSS

OSV•added 2021/08/10 11:15 a.m.•3 views

CVE-2021-37180

A vulnerability has been identified in Solid Edge SE2021 All Versions SE2021MP7. The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attacker could leverage this vulnerability to execute co...

7.8CVSS7.2AI score0.0038EPSS

NVD•added 2021/08/10 11:15 a.m.•9 views

CVE-2021-37179

A vulnerability has been identified in Solid Edge SE2021 All Versions SE2021MP7. The PSKERNEL.dll library in affected application lacks proper validation while parsing user-supplied OBJ files that could lead to a use-after-free condition. An attacker could leverage this vulnerability to execute...

7.8CVSS0.00533EPSS