← Back to home
SIEMENS-SSA-932528  ·  Published 2023-08-08  ·  View on Siemens ProductCERT ↗

SSA-932528 V1.1 (Last Update: 2023-08-08): Multiple File Parsing Vulnerabilities in Solid Edge

CVSS N/A MEDIUM

Risk Summary

<p>Solid Edge is affected by multiple memory corruption vulnerabilities that could be triggered when the application reads specially crafted files in various formats such as DWG, IFC, OBJ or STP format. If a user is tricked to open a malicious file with the affected application, an attacker could leverage the vulnerability to crash the application or execute arbitrary code.</p> <p>Siemens has released several updates for Solid Edge SE2023 and recommends to update to the latest version.</p>

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-932528 V1.1 (Last Update: 2023-08-08): Multiple File Parsing Vulnerabilities in Solid Edge See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more