VDB
CVE-2021-27382
CVE-2021-27382
PUBLISHED
CVSS 7.800000190734863 HIGH
A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing of PAR files. This could result in a stack based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13040)
EPSS 0.91% · 76.1th percentile
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.91%
76.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| siemens | solid_edge_se2021 | 0 |
| siemens | solid_edge_se2020 | 0 |
| Siemens | Solid Edge SE2021 | All Versions < SE2021MP4 |
| Siemens | Solid Edge SE2020 | All versions < SE2020MP13, * |
Timeline
- Apr 14, 2021 CVE Published
- Apr 27, 2021 EPSS Score
- Jun 30, 2021 EPSS Score
- Aug 31, 2021 EPSS Score
- Jan 3, 2022 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 7, 2022 EPSS Score
- Sep 10, 2022 EPSS Score
- Nov 11, 2022 EPSS Score
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-788287.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-853866.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-185699.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-983300.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-844761.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-163226.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-763427.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-761617.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-669158.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-574442.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-705111.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-292794.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-761844.pdf advisory
- https://us-cert.cisa.gov/ics/advisories/icsa-21-103-06 url
- https://www.zerodayinitiative.com/advisories/ZDI-21-612/ url
- https://nvd.nist.gov/vuln/detail/CVE-2021-27382 advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-612 url