CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-37202

A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The IFC adapter in affected application contains a use-after-free vulnerability that could be triggered while parsing user-supplied IFC files. An attacker could leverage this vulnerability to execute code in the context of the current process.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf

Products affected by CVE-2021-37202

Siemens » Nx 1980 » Version: 1973.3700

cpe:2.3:a:siemens:nx_1980:1973.3700
Siemens » Solid Edge » Version: se2020

cpe:2.3:a:siemens:solid_edge:se2020
Siemens » Solid Edge » Version: se2021

cpe:2.3:a:siemens:solid_edge:se2021

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-37202

Products

Pricing

Contact Us