CVE-2021-37203 - OpenCVE

A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The plmxmlAdapterIFC.dll contains an out-of-bounds read while parsing user supplied IFC files which could result in a read past the end of an allocated buffer. This could allow an attacker to cause a denial-of-service condition or read sensitive information from memory locations.

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact High

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Siemens	Nx 1980 Solid Edge

Configuration 1 [-]

cpe:2.3:a:siemens:nx_1980:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:a:siemens:solid_edge::::::::
	cpe:2.3:a:siemens:solid_edge:se2021:-::::::
	cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack1::::::
	cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack2::::::
	cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack3::::::
	cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack4::::::
	cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack5::::::
	cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack6::::::
	cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack7::::::

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf	Patch Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf	Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: siemens

Published: 2021-09-14T10:47:56

Updated: 2021-09-28T11:12:26

Reserved: 2021-07-21T00:00:00

Link: CVE-2021-37203

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-09-14T11:15:26.473

Modified: 2021-11-18T16:08:43.940

Link: CVE-2021-37203

JSON object: View

Redhat Information

No data.

CWE

CWE-125

{"containers": {"cna": {"affected": [{"product": "NX 1980 Series", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V1984"}]}, {"product": "Solid Edge SE2021", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < SE2021MP8"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The plmxmlAdapterIFC.dll contains an out-of-bounds read while parsing user supplied IFC files which could result in a read past the end of an allocated buffer. This could allow an attacker to cause a denial-of-service condition or read sensitive information from memory locations."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-125", "description": "CWE-125: Out-of-bounds Read", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-09-28T11:12:26", "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "shortName": "siemens"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf"}, {"tags": ["x_refsource_MISC"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "productcert@siemens.com", "ID": "CVE-2021-37203", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "NX 1980 Series", "version": {"version_data": [{"version_value": "All versions < V1984"}]}}, {"product_name": "Solid Edge SE2021", "version": {"version_data": [{"version_value": "All versions < SE2021MP8"}]}}]}, "vendor_name": "Siemens"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The plmxmlAdapterIFC.dll contains an out-of-bounds read while parsing user supplied IFC files which could result in a read past the end of an allocated buffer. This could allow an attacker to cause a denial-of-service condition or read sensitive information from memory locations."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-125: Out-of-bounds Read"}]}]}, "references": {"reference_data": [{"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf", "refsource": "MISC", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf"}, {"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf", "refsource": "MISC", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf"}]}}}}, "cveMetadata": {"assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "assignerShortName": "siemens", "cveId": "CVE-2021-37203", "datePublished": "2021-09-14T10:47:56", "dateReserved": "2021-07-21T00:00:00", "dateUpdated": "2021-09-28T11:12:26", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:nx_1980:*:*:*:*:*:*:*:*", "matchCriteriaId": "D3A09766-0171-4DDA-9BF9-D379DA134571", "versionEndExcluding": "1984", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:solid_edge:*:*:*:*:*:*:*:*", "matchCriteriaId": "576A303A-66CA-4694-AA54-9EB0137C24F1", "versionEndExcluding": "se2021", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:-:*:*:*:*:*:*", "matchCriteriaId": "39D237BD-EE55-4B40-ABC3-194C4BF7C6CD", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack1:*:*:*:*:*:*", "matchCriteriaId": "49F5649A-349C-42C6-AFFF-CEE1ABC14E67", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack2:*:*:*:*:*:*", "matchCriteriaId": "756343AA-DB57-40F7-94FA-84BFCDEB6159", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack3:*:*:*:*:*:*", "matchCriteriaId": "36B0DD28-653E-4069-AB5A-38F8EFEB36CA", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack4:*:*:*:*:*:*", "matchCriteriaId": "82090774-D894-41C8-82F1-A48A8707E9BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack5:*:*:*:*:*:*", "matchCriteriaId": "BD346D22-9B5D-4A50-94E2-1F5C8D391EC3", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack6:*:*:*:*:*:*", "matchCriteriaId": "1466AEE0-4A5C-4E2D-80B8-43680F60FC31", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:solid_edge:se2021:maintenance_pack7:*:*:*:*:*:*", "matchCriteriaId": "A4173D09-C317-45FF-ABA4-39E5592862F8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The plmxmlAdapterIFC.dll contains an out-of-bounds read while parsing user supplied IFC files which could result in a read past the end of an allocated buffer. This could allow an attacker to cause a denial-of-service condition or read sensitive information from memory locations."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en NX 1980 Series (Todas las versiones anteriores a V1984), Solid Edge SE2021 (Todas las versiones anteriores a SE2021MP8). El archivo plmxmlAdapterIFC.dll contiene una lectura fuera de l\u00edmites al analizar los archivos IFC suministrados por el usuario, lo que podr\u00eda dar lugar a una lectura m\u00e1s all\u00e1 del final de un b\u00fafer asignado. Esto podr\u00eda permitir a un atacante causar una condici\u00f3n de denegaci\u00f3n de servicio o leer informaci\u00f3n sensible de ubicaciones de memoria"}], "id": "CVE-2021-37203", "lastModified": "2021-11-18T16:08:43.940", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-09-14T11:15:26.473", "references": [{"source": "productcert@siemens.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf"}, {"source": "productcert@siemens.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf"}], "sourceIdentifier": "productcert@siemens.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "productcert@siemens.com", "type": "Primary"}]}