CVE-2021-22651
Siemens Solid Edge Viewer ZIP Path Traversal Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
When loading a specially crafted file, Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are, while processing the extraction of temporary files, suffering from a directory traversal vulnerability, which allows an attacker to store arbitrary scripts into automatic startup folders.
Cuando se carga un archivo especialmente diseñado, Luxion KeyShot versiones anteriores a 10.1, Luxion KeyShot Viewer versiones anteriores a 10.1, Luxion KeyShot Network Rendering versiones anteriores a 10.1 y Luxion KeyVR versiones anteriores a 10.1, mientras se procesa la extracción de archivos temporales, sufre de una vulnerabilidad de salto de directorio, que permite a un atacante almacenar scripts arbitrarios en carpetas de inicio automático
The vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the handling of ZIP files. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current process.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-01-05 CVE Reserved
- 2021-02-23 CVE Published
- 2024-08-03 CVE Updated
- 2024-11-10 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-231216.pdf | Third Party Advisory |
|
| https://www.zerodayinitiative.com/advisories/ZDI-21-324 | Third Party Advisory |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://us-cert.cisa.gov/ics/advisories/icsa-21-035-01 | 2021-03-23 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | Solid Edge Se2020 Firmware Search vendor "Siemens" for product "Solid Edge Se2020 Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Solid Edge Se2020 Search vendor "Siemens" for product "Solid Edge Se2020" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Solid Edge Se2021 Firmware Search vendor "Siemens" for product "Solid Edge Se2021 Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Solid Edge Se2021 Search vendor "Siemens" for product "Solid Edge Se2021" | - | - |
Safe
|
| Luxion Search vendor "Luxion" | Keyshot Search vendor "Luxion" for product "Keyshot" | < 10.1 Search vendor "Luxion" for product "Keyshot" and version " < 10.1" | - |
Affected
| ||||||
| Luxion Search vendor "Luxion" | Keyshot Network Rendering Search vendor "Luxion" for product "Keyshot Network Rendering" | < 10.1 Search vendor "Luxion" for product "Keyshot Network Rendering" and version " < 10.1" | - |
Affected
| ||||||
| Luxion Search vendor "Luxion" | Keyshot Viewer Search vendor "Luxion" for product "Keyshot Viewer" | < 10.1 Search vendor "Luxion" for product "Keyshot Viewer" and version " < 10.1" | - |
Affected
| ||||||
| Luxion Search vendor "Luxion" | Keyvr Search vendor "Luxion" for product "Keyvr" | < 10.1 Search vendor "Luxion" for product "Keyvr" and version " < 10.1" | - |
Affected
| ||||||