CVE-2022-39141

CWE-125Out-of-bounds Read3 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 82.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Siemens ParasolidSiemens Simcenter FemapSiemens Parasolid V33.1+5 more
Timeline
PublishedSep 13
Latest updateSep 14

Description

A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.262), Parasolid V34.0 (All versions < V34.0.252), Parasolid V34.1 (All versions < V34.1.242), Parasolid V35.0 (All versions < V35.0.161), Simcenter Femap V2022.1 (All versions < V2022.1.3), Simcenter Femap V2022.2 (All versions < V2022.2.2). The affected application is vulnerable to out of bounds read past the end of an allocated buffer when parsing X_T files. An attacker could leverage this vulnerability to leak inform

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages8 packages

CVEListV5siemens/simcenter_femap_v2022.1All versions < V2022.1.3
CVEListV5siemens/simcenter_femap_v2022.2All versions < V2022.2.2
NVDsiemens/parasolid33.133.1.262+3
NVDsiemens/simcenter_femap2022.12022.1.3+1
CVEListV5siemens/parasolid_v33.1All versions < V33.1.262

🔴Vulnerability Details

2
GHSA
GHSA-w28v-fh3p-3r9j: A vulnerability has been identified in Parasolid V332022-09-14
CVEList
CVE-2022-39141: A vulnerability has been identified in Parasolid V332022-09-13
CVE-2022-39141 (HIGH CVSS 7.8) | A vulnerability has been identified | cvebase.io