cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-44018,https://securityvulnerability.io/vulnerability/CVE-2021-44018,,"A vulnerability has been identified in JT2Go (All versions < V13.2.0.7), Solid Edge SE2021 (All versions < SE2021MP9), Solid Edge SE2022 (All versions < SE2022MP1), Teamcenter Visualization V13.1 (All versions < V13.1.0.9), Teamcenter Visualization V13.2 (All versions < V13.2.0.7), Teamcenter Visualization V13.3 (All versions < V13.3.0.1). The plmxmlAdapterSE70.dll library is vulnerable to memory corruption condition while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-15112)",Siemens,"Jt2go,Solid Edge Se2021,Solid Edge Se2022,Teamcenter Visualization V13.1,Teamcenter Visualization V13.2,Teamcenter Visualization V13.3",7.8,HIGH,0.0015899999998509884,false,,false,false,false,,false,false,2022-02-09T15:17:10.000Z,0
CVE-2021-44016,https://securityvulnerability.io/vulnerability/CVE-2021-44016,,"A vulnerability has been identified in JT2Go (All versions < V13.2.0.7), Solid Edge SE2021 (All versions < SE2021MP9), Solid Edge SE2022 (All versions < SE2022MP1), Teamcenter Visualization V13.1 (All versions < V13.1.0.9), Teamcenter Visualization V13.2 (All versions < V13.2.0.7), Teamcenter Visualization V13.3 (All versions < V13.3.0.1). The plmxmlAdapterSE70.dll library is vulnerable to memory corruption condition while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-15110)",Siemens,"Jt2go,Solid Edge Se2021,Solid Edge Se2022,Teamcenter Visualization V13.1,Teamcenter Visualization V13.2,Teamcenter Visualization V13.3",7.8,HIGH,0.0014100000262260437,false,,false,false,false,,false,false,2022-02-09T15:17:09.000Z,0
CVE-2021-44000,https://securityvulnerability.io/vulnerability/CVE-2021-44000,,"A vulnerability has been identified in JT2Go (All versions < V13.2.0.7), Solid Edge SE2021 (All versions < SE2021MP9), Solid Edge SE2022 (All versions < SE2022MP1), Teamcenter Visualization V13.1 (All versions < V13.1.0.9), Teamcenter Visualization V13.2 (All versions < V13.2.0.7), Teamcenter Visualization V13.3 (All versions < V13.3.0.1). The plmxmlAdapterSE70.dll contains an out of bounds write past the fixed-length heap-based buffer while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-15053)",Siemens,"Jt2go,Solid Edge Se2021,Solid Edge Se2022,Teamcenter Visualization V13.1,Teamcenter Visualization V13.2,Teamcenter Visualization V13.3",7.8,HIGH,0.0015399999683722854,false,,false,false,false,,false,false,2022-02-09T15:17:07.000Z,0
CVE-2021-41539,https://securityvulnerability.io/vulnerability/CVE-2021-41539,,A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process (ZDI-CAN-13773).,Siemens,Solid Edge Se2021,7.8,HIGH,0.002460000105202198,false,,false,false,false,,false,false,2021-09-28T11:12:33.000Z,0
CVE-2021-41540,https://securityvulnerability.io/vulnerability/CVE-2021-41540,,A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process (ZDI-CAN-13776).,Siemens,Solid Edge Se2021,7.8,HIGH,0.002460000105202198,false,,false,false,false,,false,false,2021-09-28T11:12:33.000Z,0
CVE-2021-41538,https://securityvulnerability.io/vulnerability/CVE-2021-41538,,"A vulnerability has been identified in NX 1953 Series (All versions < V1973.3700), NX 1980 Series (All versions < V1988), Solid Edge SE2021 (All versions < SE2021MP8). The affected application is vulnerable to information disclosure by unexpected access to an uninitialized pointer while parsing user-supplied OBJ files. An attacker could leverage this vulnerability to leak information from unexpected memory locations (ZDI-CAN-13770).",Siemens,"Nx 1953 Series,Nx 1980 Series,Solid Edge Se2021",3.3,LOW,0.0007600000244565308,false,,false,false,false,,false,false,2021-09-28T11:12:32.000Z,0
CVE-2021-41537,https://securityvulnerability.io/vulnerability/CVE-2021-41537,,A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process (ZDI-CAN-13789).,Siemens,Solid Edge Se2021,7.8,HIGH,0.002460000105202198,false,,false,false,false,,false,false,2021-09-28T11:12:31.000Z,0
CVE-2021-41536,https://securityvulnerability.io/vulnerability/CVE-2021-41536,,A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process (ZDI-CAN-13778).,Siemens,Solid Edge Se2021,7.8,HIGH,0.002460000105202198,false,,false,false,false,,false,false,2021-09-28T11:12:30.000Z,0
CVE-2021-41535,https://securityvulnerability.io/vulnerability/CVE-2021-41535,,"A vulnerability has been identified in NX 1953 Series (All versions < V1973.3700), NX 1980 Series (All versions < V1988), Solid Edge SE2021 (All versions < SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process (ZDI-CAN-13771).",Siemens,"Nx 1953 Series,Nx 1980 Series,Solid Edge Se2021",7.8,HIGH,0.00171999994199723,false,,false,false,false,,false,false,2021-09-28T11:12:29.000Z,0
CVE-2021-41534,https://securityvulnerability.io/vulnerability/CVE-2021-41534,,"A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The affected application is vulnerable to an out of bounds read past the end of an allocated buffer when parsing JT files. An attacker could leverage this vulnerability to leak information in the context of the current process (ZDI-CAN-13703).",Siemens,"Nx 1980 Series,Solid Edge Se2021",3.3,LOW,0.000699999975040555,false,,false,false,false,,false,false,2021-09-28T11:12:28.000Z,0
CVE-2021-41533,https://securityvulnerability.io/vulnerability/CVE-2021-41533,,"A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The affected application is vulnerable to an out of bounds read past the end of an allocated buffer when parsing JT files. An attacker could leverage this vulnerability to leak information in the context of the current process (ZDI-CAN-13565).",Siemens,"Nx 1980 Series,Solid Edge Se2021",3.3,LOW,0.000699999975040555,false,,false,false,false,,false,false,2021-09-28T11:12:27.000Z,0
CVE-2021-37203,https://securityvulnerability.io/vulnerability/CVE-2021-37203,,"A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The plmxmlAdapterIFC.dll contains an out-of-bounds read while parsing user supplied IFC files which could result in a read past the end of an allocated buffer. This could allow an attacker to cause a denial-of-service condition or read sensitive information from memory locations.",Siemens,"Nx 1980 Series,Solid Edge Se2021",7.1,HIGH,0.0006699999794363976,false,,false,false,false,,false,false,2021-09-14T10:47:56.000Z,0
CVE-2021-37202,https://securityvulnerability.io/vulnerability/CVE-2021-37202,,"A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The IFC adapter in affected application contains a use-after-free vulnerability that could be triggered while parsing user-supplied IFC files. An attacker could leverage this vulnerability to execute code in the context of the current process.",Siemens,"Nx 1980 Series,Solid Edge Se2021",7.8,HIGH,0.0018599999602884054,false,,false,false,false,,false,false,2021-09-14T10:47:55.000Z,0
CVE-2021-37180,https://securityvulnerability.io/vulnerability/CVE-2021-37180,,A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13775),Siemens,Solid Edge Se2021,7.8,HIGH,0.0013800000306218863,false,,false,false,false,,false,false,2021-08-10T10:35:36.000Z,0
CVE-2021-37179,https://securityvulnerability.io/vulnerability/CVE-2021-37179,,A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library in affected application lacks proper validation while parsing user-supplied OBJ files that could lead to a use-after-free condition. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13777),Siemens,Solid Edge Se2021,7.8,HIGH,0.0016199999954551458,false,,false,false,false,,false,false,2021-08-10T10:35:35.000Z,0
CVE-2021-37178,https://securityvulnerability.io/vulnerability/CVE-2021-37178,,A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). An XML external entity injection vulnerability in the underlying XML parser could cause the affected application to disclose arbitrary files to remote attackers by loading a specially crafted xml file.,Siemens,Solid Edge Se2021,5.5,MEDIUM,0.0010900000343099236,false,,false,false,false,,false,false,2021-08-10T10:35:34.000Z,0
CVE-2021-34329,https://securityvulnerability.io/vulnerability/CVE-2021-34329,,"A vulnerability has been identified in JT2Go (All versions < V13.2), Solid Edge SE2021 (All Versions < SE2021MP5), Teamcenter Visualization (All versions < V13.2). The plmxmlAdapterSE70.dll library in affected applications lacks proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the fixed-length heap-based buffer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13427)",Siemens,"Jt2go,Solid Edge Se2021,Teamcenter Visualization",7.8,HIGH,0.0008999999845400453,false,,false,false,false,,false,false,2021-07-13T11:03:45.000Z,0
CVE-2021-34328,https://securityvulnerability.io/vulnerability/CVE-2021-34328,,"A vulnerability has been identified in JT2Go (All versions < V13.2), Solid Edge SE2021 (All Versions < SE2021MP5), Teamcenter Visualization (All versions < V13.2). The plmxmlAdapterSE70.dll library in affected applications lacks proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the fixed-length heap-based buffer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13424)",Siemens,"Jt2go,Solid Edge Se2021,Teamcenter Visualization",7.8,HIGH,0.0008999999845400453,false,,false,false,false,,false,false,2021-07-13T11:03:44.000Z,0
CVE-2021-34327,https://securityvulnerability.io/vulnerability/CVE-2021-34327,,"A vulnerability has been identified in JT2Go (All versions < V13.2), Solid Edge SE2021 (All Versions < SE2021MP5), Teamcenter Visualization (All versions < V13.2). The plmxmlAdapterSE70.dll library in affected applications lacks proper validation of user-supplied data when parsing ASM files. This could result in an out of bounds write past the fixed-length heap-based buffer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13423)",Siemens,"Jt2go,Solid Edge Se2021,Teamcenter Visualization",7.8,HIGH,0.0008999999845400453,false,,false,false,false,,false,false,2021-07-13T11:03:43.000Z,0
CVE-2021-34326,https://securityvulnerability.io/vulnerability/CVE-2021-34326,,"A vulnerability has been identified in JT2Go (All versions < V13.2), Solid Edge SE2021 (All Versions < SE2021MP5), Teamcenter Visualization (All versions < V13.2). The plmxmlAdapterSE70.dll library in affected applications lacks proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the fixed-length heap-based buffer. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13422)",Siemens,"Jt2go,Solid Edge Se2021,Teamcenter Visualization",7.8,HIGH,0.0008999999845400453,false,,false,false,false,,false,false,2021-07-13T11:03:42.000Z,0
CVE-2021-25678,https://securityvulnerability.io/vulnerability/CVE-2021-25678,,"A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-12529)",Siemens,"Solid Edge Se2020,Solid Edge Se2021",7.8,HIGH,0.0008500000112690032,false,,false,false,false,,false,false,2021-04-22T20:42:21.000Z,0
CVE-2021-27382,https://securityvulnerability.io/vulnerability/CVE-2021-27382,,"A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing of PAR files. This could result in a stack based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13040)",Siemens,"Solid Edge Se2020,Solid Edge Se2021",7.8,HIGH,0.006719999946653843,false,,false,false,false,,false,false,2021-04-22T20:42:21.000Z,0
CVE-2020-26997,https://securityvulnerability.io/vulnerability/CVE-2020-26997,,"A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could lead to pointer dereferences of a value obtained from untrusted source. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-11919)",Siemens,"Solid Edge Se2020,Solid Edge Se2021",7.8,HIGH,0.00107999995816499,false,,false,false,false,,false,false,2021-04-22T20:42:19.000Z,0
CVE-2021-27380,https://securityvulnerability.io/vulnerability/CVE-2021-27380,,"A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-12532)",Siemens,"Solid Edge Se2020,Solid Edge Se2021",7.8,HIGH,0.004399999976158142,false,,false,false,false,,false,false,2021-03-15T17:03:31.000Z,0
CVE-2021-27381,https://securityvulnerability.io/vulnerability/CVE-2021-27381,,"A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP3). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds read past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-12534)",Siemens,"Solid Edge Se2020,Solid Edge Se2021",7.8,HIGH,0.0009899999713525176,false,,false,false,false,,false,false,2021-03-15T17:03:31.000Z,0