CVE-2024-34772

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published May 14, 2024

CWE ID 125

Summary

CVE-2024-34772 is a newly identified vulnerability affecting Solid Edge versions below V224.0 Update 4. This issue stems from an out-of-bounds read flaw in the PAR file parsing process. Maliciously crafted PAR files can cause the application to read data beyond the allocated memory, potentially enabling an attacker to execute arbitrary code within the context of the current process. No workarounds or patches have been released at this time, making it a significant concern for users until a fix is available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v1DwJx
https://www.cve.org/CVERecord?id=CVE-2024-34772
https://nvd.nist.gov/vuln/detail/CVE-2024-34772

Back to Vulnerability Database

CVE-2024-34772

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations