CVE-2021-22649
Siemens Solid Edge Viewer JT File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 have multiple NULL pointer dereference issues while processing project files, which may allow an attacker to execute arbitrary code.
Luxion KeyShot versiones anteriores a 10.1, Luxion KeyShot Viewer versiones anteriores a 10.1, Luxion KeyShot Network Rendering versiones anteriores a 10.1 y Luxion KeyVR versiones anteriores a 10.1, presentan múltiples problemas de desreferencia de puntero NULL mientras se procesar archivos de proyecto, lo que puede permitir a un atacante ejecutar código arbitrario
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of JT files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-01-05 CVE Reserved
- 2021-02-23 CVE Published
- 2023-09-29 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-822: Untrusted Pointer Dereference
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-231216.pdf | Third Party Advisory |
|
| https://us-cert.cisa.gov/ics/advisories/icsa-21-035-01 | Third Party Advisory | |
| https://www.zerodayinitiative.com/advisories/ZDI-21-317 | Third Party Advisory |
|
| https://www.zerodayinitiative.com/advisories/ZDI-21-325 | Third Party Advisory |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | Solid Edge Se2020 Firmware Search vendor "Siemens" for product "Solid Edge Se2020 Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Solid Edge Se2020 Search vendor "Siemens" for product "Solid Edge Se2020" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Solid Edge Se2021 Firmware Search vendor "Siemens" for product "Solid Edge Se2021 Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Solid Edge Se2021 Search vendor "Siemens" for product "Solid Edge Se2021" | - | - |
Safe
|
| Luxion Search vendor "Luxion" | Keyshot Search vendor "Luxion" for product "Keyshot" | < 10.1 Search vendor "Luxion" for product "Keyshot" and version " < 10.1" | - |
Affected
| ||||||
| Luxion Search vendor "Luxion" | Keyshot Network Rendering Search vendor "Luxion" for product "Keyshot Network Rendering" | < 10.1 Search vendor "Luxion" for product "Keyshot Network Rendering" and version " < 10.1" | - |
Affected
| ||||||
| Luxion Search vendor "Luxion" | Keyshot Viewer Search vendor "Luxion" for product "Keyshot Viewer" | < 10.1 Search vendor "Luxion" for product "Keyshot Viewer" and version " < 10.1" | - |
Affected
| ||||||
| Luxion Search vendor "Luxion" | Keyvr Search vendor "Luxion" for product "Keyvr" | < 10.1 Search vendor "Luxion" for product "Keyvr" and version " < 10.1" | - |
Affected
| ||||||