← volver
CVE-2021-41538

CVE-2021-41538

EPSS 0.9%CWE-824
A vulnerability has been identified in NX 1953 Series (All versions < V1973.3700), NX 1980 Series (All versions < V1988), Solid Edge SE2021 (All versions < SE2021MP8). The affected application is vulnerable to information disclosure by unexpected access to an uninitialized pointer while parsing user-supplied OBJ files. An attacker could leverage this vulnerability to leak information from unexpected memory locations (ZDI-CAN-13770).
Productos afectados
Siemens · NX 1953 SeriesSiemens · NX 1980 SeriesSiemens · Solid Edge SE2021

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://cert-portal.siemens.com/productcert/pdf/ssa-328042.pdfhttps://cert-portal.siemens.com/productcert/pdf/ssa-728618.pdfhttps://www.zerodayinitiative.com/advisories/ZDI-21-1122/