Description
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process.
CVSS Metrics
- Vector
- CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Attack Vector
- local
- Complexity
- high
- Privileges
- none
- User Action
- passive
- Confidentiality
- undefined
- Integrity
- undefined
- Availability
- undefined
- Weaknesses
- CWE-125
Metadata
- Primary Vendor
- SIEMENS
- Published
- 10/14/2025
- Last Modified
- 10/16/2025
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2024siemens : solid_edge_se2025siemens : solid_edge_se2025siemens : solid_edge_se2025siemens : solid_edge_se2025siemens : solid_edge_se2025siemens : solid_edge_se2025siemens : solid_edge_se2025
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.