CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2024-41908
https://notcve.org/view.php?id=CVE-2024-41908
13 Aug 2024 — A vulnerability has been identified in NX (All versions < V2406.3000). The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process. • https://cert-portal.siemens.com/productcert/html/ssa-357412.html • CWE-125: Out-of-bounds Read •
CVSS: 4.3EPSS: 0%CPEs: 21EXPL: 0CVE-2021-41538 – Siemens Solid Edge Viewer OBJ File Parsing Uninitialized Pointer Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-41538
28 Sep 2021 — A vulnerability has been identified in NX 1953 Series (All versions < V1973.3700), NX 1980 Series (All versions < V1988), Solid Edge SE2021 (All versions < SE2021MP8). The affected application is vulnerable to information disclosure by unexpected access to an uninitialized pointer while parsing user-supplied OBJ files. An attacker could leverage this vulnerability to leak information from unexpected memory locations (ZDI-CAN-13770). Se ha identificado una vulnerabilidad en NX 1953 Series (Todas las versione... • https://cert-portal.siemens.com/productcert/pdf/ssa-328042.pdf • CWE-824: Access of Uninitialized Pointer •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2021-41535 – Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-41535
28 Sep 2021 — A vulnerability has been identified in NX 1953 Series (All versions < V1973.3700), NX 1980 Series (All versions < V1988), Solid Edge SE2021 (All versions < SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process (ZDI-CAN-13771). Se ha identificado una vulnerabilidad en NX 1953 Series (Todas las versiones anteriores a V1973.3700), NX 1980 Series (Todas las versione... • https://cert-portal.siemens.com/productcert/pdf/ssa-328042.pdf • CWE-416: Use After Free •