ICSA-23-047-01 · Published 2023-03-14 · View on CISA ICS-CERT ↗

Siemens Solid Edge

CVSS 7.8 HIGH

CVEs (37)

CVE-2021-32936 CVE-2021-32938 CVE-2021-32948 CVE-2021-43336 CVE-2021-43391 CVE-2022-46345 CVE-2022-46346 CVE-2022-46347 CVE-2022-46348 CVE-2022-46349 CVE-2023-22295 CVE-2023-22321 CVE-2023-22354 CVE-2023-22669 CVE-2023-22670 CVE-2023-22846 CVE-2023-23579 CVE-2023-24549 CVE-2023-24550 CVE-2023-24551 CVE-2023-24552 CVE-2023-24553 CVE-2023-24554 CVE-2023-24555 CVE-2023-24556 CVE-2023-24557 CVE-2023-24558 CVE-2023-24559 CVE-2023-24560 CVE-2023-24561 CVE-2023-24562 CVE-2023-24563 CVE-2023-24564 CVE-2023-24565 CVE-2023-24566 CVE-2023-24581 CVE-2023-25140

Remediations

Do not open untrusted X_B, DWG, DXF, STL, STP, SLDPRT and PAR files in Solid Edge
Update to V222.0MP12 or later version
Currently no fix is planned
Update to V223.0Update2 or later version

Affected Vendors

Siemens

Affected Products (3)

Siemens · Solid Edge SE2022 vers:all/*

Siemens · Solid Edge SE2022 <V222.0MP12

Siemens · Solid Edge SE2023 <V223.0Update2

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more