CVE-2023-39184

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 8, 2023
Updated: Aug 10, 2023
CWE ID 125

Summary

CVE-2023-39184 is a newly identified vulnerability that affects Solid Edge SE2023, with all versions below V223.0 Update 7 being vulnerable. The issue involves an out-of-bounds read issue during the parsing of specially crafted PSM files. This flaw allows an attacker to read memory beyond the allocated structure, potentially leading to code execution in the context of the current process. Successful exploitation could result in significant security implications for affected users. It is recommended that users update to the latest available version of Solid Edge to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Siemens Solid Edge

Affected Vendors

  • Siemens AG