VDB

ICSA-21-103-06

ICSA-21-103-06 PUBLISHED CVSS 7.800000190734863 HIGH

Siemens has released a new version for Solid Edge to fix multiple vulnerabilities that could be triggered when the application reads files in different file formats (PAR, DFT extensions). If a user is tricked to open a malicious file with the affected application, this could lead to a crash, and potentially also to arbitrary code execution or data extraction on the target host system. Siemens recommends to update to the latest version and to avoid opening of untrusted files from unknown sources.

Risk Scores

CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Affected Products

VendorProductVersions
Solid Edge SE2020
Solid Edge SE2021

Timeline

  • Apr 13, 2021 CVE Published
  • May 6, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›