Siemens Solid Edge Se2023 vulnerabilities

49 known vulnerabilities affecting siemens/solid_edge_se2023.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

HIGH47MEDIUM2

Vulnerabilities

Page 2 of 3

CVE-2023-39181HIGHCVSS 7.8vAll versions < V223.0 Update 72023-08-08

CVE-2023-39181 [HIGH] CWE-787 CVE-2023-39181: A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affec A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted PAR file. This could allow an attacker to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-39182HIGHCVSS 7.8vAll versions < V223.0 Update 72023-08-08

CVE-2023-39182 [HIGH] CWE-125 CVE-2023-39182: A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affec A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-39188HIGHCVSS 7.8vAll versions < V223.0 Update 72023-08-08

CVE-2023-39188 [HIGH] CWE-125 CVE-2023-39188: A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affec A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-30986HIGHCVSS 7.8vupdate_0001vAll versions < V223.0 Update 3+1 more2023-05-09

CVE-2023-30986 [HIGH] CWE-119 CVE-2023-30986: A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 3), Solid Edg A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 3), Solid Edge SE2023 (All versions < V223.0 Update 2). Affected applications contain a memory corruption vulnerability while parsing specially crafted STP files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19561)

cvelistv5nvd

CVE-2023-30985MEDIUMCVSS 5.5vupdate_0001vAll versions < V223.0 Update 3+1 more2023-05-09

CVE-2023-30985 [LOW] CWE-125 CVE-2023-30985: A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 3), Solid Edg A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 3), Solid Edge SE2023 (All versions < V223.0 Update 2). Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow an attacker to disclose sensitive information. (

cvelistv5nvd

CVE-2023-24551HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24551 [HIGH] CWE-122 CVE-2023-24551: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to heap-based buffer underflow while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-24550HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24550 [HIGH] CWE-122 CVE-2023-24550: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to heap-based buffer while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-24557HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24557 [HIGH] CWE-125 CVE-2023-24557: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current proc

cvelistv5nvd

CVE-2023-24554HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24554 [HIGH] CWE-125 CVE-2023-24554: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current proc

cvelistv5nvd

CVE-2023-24549HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24549 [HIGH] CWE-121 CVE-2023-24549: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to stack-based buffer while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-24558HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24558 [HIGH] CWE-125 CVE-2023-24558: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current proc

cvelistv5nvd

CVE-2023-24562HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24562 [HIGH] CWE-824 CVE-2023-24562: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-24553HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24553 [HIGH] CWE-125 CVE-2023-24553: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current proc

cvelistv5nvd

CVE-2023-24552HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24552 [HIGH] CWE-125 CVE-2023-24552: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application contains an out of bounds read past the end of an allocated buffer while parsing a specially crafted PAR file. This could allow an attacker to to execute code in the context of the current pro

cvelistv5nvd

CVE-2023-24561HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24561 [HIGH] CWE-824 CVE-2023-24561: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-24555HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24555 [HIGH] CWE-125 CVE-2023-24555: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current proc

cvelistv5nvd

CVE-2023-24560HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24560 [HIGH] CWE-787 CVE-2023-24560: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted PAR file. This could allow an attacker to to execute code in the context of the current pr

cvelistv5nvd

CVE-2023-24563HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24563 [HIGH] CWE-824 CVE-2023-24563: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.

cvelistv5nvd

CVE-2023-24581HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24581 [HIGH] CWE-416 CVE-2023-24581: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2022 (All versions), Solid Edge SE2023 (All versions < V223.0Update2). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted STP files. An attacker could leverage this vulnerability to ex

cvelistv5nvd

CVE-2023-24566HIGHCVSS 7.8fixed in 2210.0002.004vAll versions < V223.0Update22023-02-14

CVE-2023-24566 [LOW] CWE-121 CVE-2023-24566: A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2 A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2022 (All versions), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to stack-based buffer while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of

cvelistv5nvd

← Previous2 / 3Next →