Siemens Solid Edge Se2020 vulnerabilities

13 known vulnerabilities affecting siemens/solid_edge_se2020.

Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH12MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2021-25678HIGHCVSS 7.8fixed in se2020mp14vAll versions < SE2020MP13+1 more2021-04-22
CVE-2021-25678 [HIGH] CWE-787 CVE-2021-25678: A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the end of an allocated structure.
cvelistv5nvd
CVE-2020-26997HIGHCVSS 7.8≤ se2020mp13vAll versions < SE2020MP13+1 more2021-04-22
CVE-2020-26997 [HIGH] CWE-822 CVE-2020-26997: A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could lead to pointer dereferences of a value obtained from untrusted source.
cvelistv5nvd
CVE-2021-27382HIGHCVSS 7.8≤ se2020mp13vAll versions < SE2020MP13+1 more2021-04-22
CVE-2021-27382 [HIGH] CWE-121 CVE-2021-27382: A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing of PAR files. This could result in a stack based buffer overflow. An attacker could leverage t
cvelistv5nvd
CVE-2021-27380HIGHCVSS 7.8vAll versions < SE2020MP132021-03-15
CVE-2021-27380 [HIGH] CWE-787 CVE-2021-27380: A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability
cvelistv5nvd
CVE-2020-28385HIGHCVSS 7.8vAll versions < SE2020MP132021-03-15
CVE-2020-28385 [HIGH] CWE-787 CVE-2020-28385: A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing DFT files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability
cvelistv5nvd
CVE-2021-27381HIGHCVSS 7.8vAll Versions < SE2020MP132021-03-15
CVE-2021-27381 [HIGH] CWE-125 CVE-2021-27381: A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP13), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP3). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds read past the end of an allocated structure. An attacker could leverage this vulnerability t
cvelistv5nvd
CVE-2020-28387MEDIUMCVSS 5.5vAll Versions < SE2020MP132021-03-15
CVE-2020-28387 [MEDIUM] CWE-611 CVE-2020-28387: A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP13), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP3). When opening a specially crafted SEECTCXML file, the application could disclose arbitrary files to remote attackers. This is because of the passing of specially crafted content to the underlying XML parser without takin
cvelistv5nvd
CVE-2020-28383HIGHCVSS 7.8vAll Versions < SE2020MP122021-01-12
CVE-2020-28383 [HIGH] CWE-787 CVE-2020-28383: A vulnerability has been identified in JT2Go (All versions < V13.1.0.1), Solid Edge SE2020 (All Vers A vulnerability has been identified in JT2Go (All versions < V13.1.0.1), Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2), Teamcenter Visualization (All versions < V13.1.0.1). Affected applications lack proper validation of user-supplied data when parsing PAR files. This can result in an out of bounds write p
cvelistv5nvd
CVE-2020-28386HIGHCVSS 7.8vAll Versions < SE2020MP122021-01-12
CVE-2020-28386 [HIGH] CWE-787 CVE-2020-28386: A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2). Affected applications lack proper validation of user-supplied data when parsing DFT files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability
cvelistv5nvd
CVE-2020-26989HIGHCVSS 7.8vAll Versions < SE2020MP122021-01-12
CVE-2020-26989 [HIGH] CWE-121 CVE-2020-26989: A vulnerability has been identified in JT2Go (All versions < V13.1.0.1), Solid Edge SE2020 (All Vers A vulnerability has been identified in JT2Go (All versions < V13.1.0.1), Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2), Teamcenter Visualization (All versions < V13.1.0.1). Affected applications lack proper validation of user-supplied data when parsing of PAR files. This could result in a stack based buffe
cvelistv5nvd
CVE-2020-28382HIGHCVSS 7.8vAll Versions < SE2020MP122021-01-12
CVE-2020-28382 [HIGH] CWE-787 CVE-2020-28382: A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in a out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability t
cvelistv5nvd
CVE-2020-28381HIGHCVSS 7.8vAll Versions < SE2020MP122021-01-12
CVE-2020-28381 [HIGH] CWE-787 CVE-2020-28381: A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write into uninitialized memory. An attacker could leverage this vulnerability to execute co
cvelistv5nvd
CVE-2020-28384HIGHCVSS 7.8vAll Versions < SE2020MP122021-01-12
CVE-2020-28384 [HIGH] CWE-121 CVE-2020-28384: A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could lead to a stack based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of
cvelistv5nvd