CVE-2024-22043
published 2024-02-13CVE-2024-22043: A vulnerability has been identified in Parasolid V35.0 (All versions < V35.0.251), Parasolid V35.1 (All versions < V35.1.170). The affected applications…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
A vulnerability has been identified in Parasolid V35.0 (All versions < V35.0.251), Parasolid V35.1 (All versions < V35.1.170). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted XT files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | parasolid | >= 35.0 < 35.0.251 | 35.0.251 |
| siemens | parasolid | >= 35.1 < 35.1.170 | 35.1.170 |
| siemens | parasolid_v35.0 | < V35.0.251 | V35.0.251 |
| siemens | parasolid_v35.1 | < V35.1.170 | V35.1.170 |