CVE-2023-39184
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-39184 is a newly identified vulnerability that affects Solid Edge SE2023, with all versions below V223.0 Update 7 being vulnerable. The issue involves an out-of-bounds read issue during the parsing of specially crafted PSM files. This flaw allows an attacker to read memory beyond the allocated structure, potentially leading to code execution in the context of the current process. Successful exploitation could result in significant security implications for affected users. It is recommended that users update to the latest available version of Solid Edge to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Siemens Solid Edge
Affected Vendors
- Siemens AG
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions