Vulnerabilities > Siemens > Solid Edge Se2021 Firmware

DATE CVE VULNERABILITY TITLE RISK
2021-08-10 CVE-2021-37178 XXE vulnerability in Siemens Solid Edge Se2021 Firmware
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7).
local
low complexity
siemens CWE-611
5.5
5.5
2021-08-10 CVE-2021-37179 Use After Free vulnerability in Siemens Solid Edge Se2021 Firmware
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7).
local
low complexity
siemens CWE-416
7.8
7.8
2021-08-10 CVE-2021-37180 Access of Uninitialized Pointer vulnerability in Siemens Solid Edge Se2021 Firmware
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7).
local
low complexity
siemens CWE-824
7.8
7.8
2021-06-08 CVE-2021-31342 Out-of-bounds Write vulnerability in Siemens products
The ugeom2d.dll library in all versions of Solid Edge SE2020 before 2020MP14 and all versions of Solid Edge SE2021 before SE2021MP5 lack proper validation of user-supplied data when parsing DFT files.
network
low complexity
siemens CWE-787
8.8
8.8
2021-06-08 CVE-2021-31343 Out-of-bounds Write vulnerability in Siemens products
The jutil.dll library in all versions of Solid Edge SE2020 before 2020MP14 and all versions of Solid Edge SE2021 before SE2021MP5 lack proper validation of user-supplied data when parsing DFT files.
network
low complexity
siemens CWE-787
8.8
8.8
2021-05-27 CVE-2021-27490 Out-of-bounds Read vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code.
local
low complexity
luxion datakit siemens CWE-125
7.8
7.8
2021-05-27 CVE-2021-27488 Out-of-bounds Write vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files.
local
low complexity
luxion datakit siemens CWE-787
7.8
7.8
2021-05-27 CVE-2021-27492 XXE vulnerability in multiple products
When opening a specially crafted 3DXML file, the application containing Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior could disclose arbitrary files to remote attackers.
local
low complexity
luxion datakit siemens CWE-611
5.5
5.5
2021-05-27 CVE-2021-27494 Stack-based Buffer Overflow vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing STP files.
local
low complexity
luxion datakit siemens CWE-121
7.8
7.8
2021-05-27 CVE-2021-27496 Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing PRT files.
local
low complexity
luxion datakit siemens
7.8
7.8