QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2020-26997

Back to search

CVE-2020-26997

Published: Apr 22, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could lead to pointer dereferences of a value obtained from untrusted source. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-11919)

VendorProductVersions

Siemens

Solid Edge SE2020

affected
All versions < SE2020MP13

Siemens

Solid Edge SE2020

affected
All versions < SE2020MP14

Siemens

Solid Edge SE2021

affected
All Versions < SE2021MP4

Weaknesses (CWE)

CWE-822

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now