A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in a out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process.
2021-01-12T21:15:17.760
2024-11-21T05:22:41.357
Modified
CVSSv3.1: 7.8 (HIGH)
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.6
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | siemens | solid_edge | < se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2020 | Yes |
| Application | siemens | solid_edge | se2021 | Yes |
| Application | siemens | solid_edge | se2021 | Yes |