VDB
CVE-2021-25670
CVE-2021-25670
PUBLISHED
CVSS 7.800000190734863 HIGH
A vulnerability has been identified in Tecnomatix RobotExpert (All versions < V16.1). Affected applications lack proper validation of user-supplied data when parsing CELL files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-12608)
EPSS 0.37% · 59.0th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.37%
59.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Tecnomatix RobotExpert | All versions < V16.1 |
| siemens | tecnomatix_robotexpert | 0 |
Exploit Intelligence
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- CVE-2017-1000367 (github-poc)
- CVE-2017-1000367 (github-poc)
- CVE-2017-1000367 (github-poc)
- CVE-2017-1000367 (github-poc)
- own implementation of the CVE-2017-1000367 sudo privilege escalation vulnerability in python (github-poc)
- own implementation of the CVE-2017-1000367 sudo privilege escalation vulnerability in python (github-poc)
…and 11 more exploits
Timeline
- Apr 14, 2021 CVE Published
- Apr 27, 2021 EPSS Score
- Jun 30, 2021 EPSS Score
- Sep 1, 2021 EPSS Score
- Nov 2, 2021 EPSS Score
- Jan 3, 2022 EPSS Score
- Mar 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 8, 2022 EPSS Score
- Jul 9, 2022 EPSS Score
- Sep 10, 2022 EPSS Score
- Nov 11, 2022 EPSS Score
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-788287.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-853866.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-185699.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-983300.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-844761.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-163226.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-763427.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-761617.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-669158.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-574442.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-705111.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-292794.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-761844.pdf advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-25670 advisory