CVE-2024-54093

CWE-122Heap-based Buffer OverflowCWE-787Out-of-bounds Write3 documents3 sources
Severity
7.3HIGH
EPSS
0.1%
top 68.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Siemens Solid Edge Se2024
Timeline
PublishedDec 10

Description

A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5siemens/solid_edge_se2024< V224.0 Update 5

🔴Vulnerability Details

2
GHSA
GHSA-4gr6-xfw9-h47f: A vulnerability has been identified in Solid Edge SE2024 (All versions < V2242024-12-10
CVEList
CVE-2024-54093: A vulnerability has been identified in Solid Edge SE2024 (All versions < V2242024-12-10
CVE-2024-54093 (HIGH CVSS 7.3) | A vulnerability has been identified | cvebase.io