Siemens Solid Edge Se2024 224.0 Update 0001

CPE Details

Siemens Solid Edge Se2024 224.0 Update 0001
siemens
solid_edge_se2024
224.0
2025-08-20
18h15 +00:00
2025-08-20
18h15 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:siemens:solid_edge_se2024:224.0:update_0001:*:*:*:*:*:*

Informations

Vendor

siemens

Product

solid_edge_se2024

Version

224.0

Update

update_0001

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-54095 2024-12-10 13h54 +00:00 A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 10). The affected application is vulnerable to integer underflow vulnerability which can be triggered while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
7.3
High
CVE-2024-54094 2024-12-10 13h54 +00:00 A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
7.3
High
CVE-2024-54093 2024-12-10 13h54 +00:00 A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process.
7.3
High
CVE-2023-49125 2024-02-13 08h59 +00:00 A vulnerability has been identified in Parasolid V35.0 (All versions < V35.0.263), Parasolid V35.1 (All versions < V35.1.252), Parasolid V36.0 (All versions < V36.0.198), Solid Edge SE2023 (All versions < V223.0 Update 11), Solid Edge SE2024 (All versions < V224.0 Update 3). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted files containing XT format. This could allow an attacker to execute code in the context of the current process.
7.8
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.