CVE-2023-39187

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 8, 2023

Updated: Aug 10, 2023

CWE ID 125

Summary

CVE-2023-39187 is a newly disclosed vulnerability that affects all versions of Solid Edge SE2023 prior to V223.0 Update 7. This issue arises due to an out-of-bounds read vulnerability in the software's handling of DFT files. Maliciously crafted DFT files can cause the application to read past the designated memory boundary, potentially resulting in code execution for the attacker, thus compromising the affected system with the attacker's privileges.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens Solid Edge

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sHPfe9
https://www.cve.org/CVERecord?id=CVE-2023-39187
https://nvd.nist.gov/vuln/detail/CVE-2023-39187

Back to Vulnerability Database