CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54095
https://notcve.org/view.php?id=CVE-2024-54095
10 Dec 2024 — A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 10). The affected application is vulnerable to integer underflow vulnerability which can be triggered while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. • https://cert-portal.siemens.com/productcert/html/ssa-730188.html • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54094
https://notcve.org/view.php?id=CVE-2024-54094
10 Dec 2024 — A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. • https://cert-portal.siemens.com/productcert/html/ssa-730188.html • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54093
https://notcve.org/view.php?id=CVE-2024-54093
10 Dec 2024 — A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process. • https://cert-portal.siemens.com/productcert/html/ssa-730188.html • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-47942
https://notcve.org/view.php?id=CVE-2024-47942
12 Nov 2024 — A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 9). The affected applications suffer from a DLL hijacking vulnerability. This could allow an attacker to execute arbitrary code via placing a crafted DLL file on the system. • https://cert-portal.siemens.com/productcert/html/ssa-351178.html • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-47941
https://notcve.org/view.php?id=CVE-2024-47941
12 Nov 2024 — A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 9). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. • https://cert-portal.siemens.com/productcert/html/ssa-351178.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-47940
https://notcve.org/view.php?id=CVE-2024-47940
12 Nov 2024 — A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 9). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PSM files. This could allow an attacker to execute code in the context of the current process. • https://cert-portal.siemens.com/productcert/html/ssa-351178.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34773
https://notcve.org/view.php?id=CVE-2024-34773
14 May 2024 — A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 2). The affected applications contain a stack overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. Se ha identificado una vulnerabilidad en Solid Edge (Todas las versiones < V224.0 Actualización 2). Las aplicaciones afectadas contienen una vulnerabilidad de desbordamiento de pila al analizar archivos PAR especialmente manipulados.... • https://cert-portal.siemens.com/productcert/html/ssa-589937.html • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34772
https://notcve.org/view.php?id=CVE-2024-34772
14 May 2024 — A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 4). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. Se ha identificado una vulnerabilidad en Solid Edge (Todas las versiones < V224.0 Actualización 4). Las aplicaciones afectadas contienen una lectura fuera de los límites más allá del final de una estruct... • https://cert-portal.siemens.com/productcert/html/ssa-589937.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34771
https://notcve.org/view.php?id=CVE-2024-34771
14 May 2024 — A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 2). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. Se ha identificado una vulnerabilidad en Solid Edge (Todas las versiones < V224.0 Actualización 2). La aplicación afectada es vulnerable al desbordamiento de búfer de almacenamiento dinámico mientras analiza archivos PAR especial... • https://cert-portal.siemens.com/productcert/html/ssa-589937.html • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-33493
https://notcve.org/view.php?id=CVE-2024-33493
14 May 2024 — A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. Se ha identificado una vulnerabilidad en Solid Edge (Todas las versiones < V224.0 Actualización 5). Las aplicaciones afectadas contienen una lectura fuera de los límites más allá del final de una estruct... • https://cert-portal.siemens.com/productcert/html/ssa-589937.html • CWE-125: Out-of-bounds Read •