CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-37203

A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The plmxmlAdapterIFC.dll contains an out-of-bounds read while parsing user supplied IFC files which could result in a read past the end of an allocated buffer. This could allow an attacker to cause a denial-of-service condition or read sensitive information from memory locations.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.3%

CVSS Severity

CVSS v3 Score 7.1

CVSS v2 Score 5.8

References

https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdf

Products affected by CVE-2021-37203

Siemens » Nx 1980 » Version: 1973.3700

cpe:2.3:a:siemens:nx_1980:1973.3700
Siemens » Solid Edge » Version: se2020

cpe:2.3:a:siemens:solid_edge:se2020
Siemens » Solid Edge » Version: se2021

cpe:2.3:a:siemens:solid_edge:se2021

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-37203

Products

Pricing

Contact Us