A vulnerability has been identified in Solid Edge (All Versions < SE2022MP9). The affected application contains an out of bounds write past the fixed-length heap-based buffer while parsing specially crafted DWG files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-17627)
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-258115.pdf | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2022-10-11T00:00:00
Updated: 2022-10-11T00:00:00
Reserved: 2022-08-08T00:00:00
Link: CVE-2022-37864
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-10-11T11:15:10.233
Modified: 2022-10-12T13:47:37.710
Link: CVE-2022-37864
JSON object: View
Redhat Information
No data.