SSA-351178 — Vulnetix

SSA-351178 PUBLISHED CVSS 7.800000190734863 HIGH

Solid Edge is affected by multiple file parsing vulnerabilities that could be triggered when the application reads specially crafted files in various formats such as PAR or PSM format, and by a DLL hijacking vulnerability. This could allow an attacker to crash the application or execute arbitrary code. Siemens has released a new version for Solid Edge SE2024 and recommends to update to the latest version.

Risk Scores

CVSS 3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
	Solid Edge SE2024

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-351178.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-351178.json (circl)

Timeline

Nov 12, 2024 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-351178.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-351178.json advisory

Open in Interactive Console →