CVE-2023-24552
Published Feb 14, 2023
Last updated 9 months ago
Overview
- Description
- A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application contains an out of bounds read past the end of an allocated buffer while parsing a specially crafted PAR file. This could allow an attacker to to execute code in the context of the current process.
- Source
- productcert@siemens.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- productcert@siemens.com
- CWE-125
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "22C0D3BE-0640-49C8-86F1-52966CABA2E2"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE12CBDF-222E-4DE9-927A-3BDDBFFF1E1A"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EEFAAAE5-52B1-48EA-98E1-98A854CBE65A"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D5AFCFBB-ED56-4DDB-89D8-B47A20821AB8"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "087A9E78-9E5C-4D94-A251-02F9AB160F54"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "68EE0588-FE7F-4581-9484-52404DB5B99A"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9F72318F-0E9C-4AB1-9CA2-6527513AE0F6"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "63C93992-17F7-4499-BC57-BD67E8A6C508"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7180CEA7-150A-4B1D-BDFD-61C320A33148"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0244EE5-BF22-491A-A7DE-48F44E2A17FC"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2022:maintenance_pack_11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A583AAD-5B13-4822-AA24-AA7D16305FE2"
},
{
"criteria": "cpe:2.3:a:siemens:solid_edge_se2023:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0C855788-002F-41E5-BC01-8597E66EDE1C",
"versionEndExcluding": "2210.0002.004"
}
],
"operator": "OR"
}
]
}
]