3 matches found
CVE-2020-26997
CVE-2020-26997 affects Siemens Solid Edge (SE2020/SE2021) where PAR file parsing lacks input validation, allowing pointer dereference and potential code execution. Affected products: Solid Edge SE2020 (< SE2020MP13/MP14) and SE2021 (
CVE-2021-25678
Siemen s Solid Edge PAR File parsing vulnerability CVE-2021-25678 affects Solid Edge SE2020 (before MP13) and SE2021 (before MP4). The issue is due to improper validation of user-supplied data when parsing PAR files, causing an out-of-bounds write past the end of an allocated structure and enabli...
CVE-2021-27382
CVE-2021-27382 affects Siemens Solid Edge (SE2020 before MP13, SE2020 before MP14, SE2021 before MP4). The issue is a stack-based buffer overflow in PAR file parsing due to inadequate validation of user-supplied data, enabling code execution in the context of the current process. Public advisorie...