First published: Tue Sep 14 2021(Updated: )
A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The IFC adapter in affected application contains a use-after-free vulnerability that could be triggered while parsing user-supplied IFC files. An attacker could leverage this vulnerability to execute code in the context of the current process.
Credit: productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens Nx 1980 | <1984 | |
Siemens Solid Edge | <se2021 | |
Siemens Solid Edge | =se2021 | |
Siemens Solid Edge | =se2021-maintenance_pack1 | |
Siemens Solid Edge | =se2021-maintenance_pack2 | |
Siemens Solid Edge | =se2021-maintenance_pack3 | |
Siemens Solid Edge | =se2021-maintenance_pack4 | |
Siemens Solid Edge | =se2021-maintenance_pack5 | |
Siemens Solid Edge | =se2021-maintenance_pack6 | |
Siemens Solid Edge | =se2021-maintenance_pack7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-37202 is a vulnerability identified in NX 1980 Series (All versions < V1984) Solid Edge SE2021 (All versions < SE2021MP8).
CVE-2021-37202 affects Siemens NX 1980 versions prior to V1984.
CVE-2021-37202 affects Siemens Solid Edge SE2021 versions prior to SE2021MP8.
CVE-2021-37202 has a severity rating of 7.8 (High).
To fix CVE-2021-37202, update NX 1980 to version V1984 or later, and update Solid Edge SE2021 to version SE2021MP8 or later.