Out-of-bounds Read in Siemens Nx 1980 Series
CVE-2021-41534
A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The affected application is vulnerable to an out of bounds read past the end of an allocated buffer when parsing JT…
Vulnerability class: Buffer Overflow
EPSS: 0.009 (56.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 3.3 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N.
Affected products
- Siemens Nx 1980 Series — versions All versions < V1984
- Siemens Nx_1984
- Siemens Nx_1984_firmware
- Siemens Nx_1988
- Siemens Nx_1988_firmware
- Siemens Solid_edge — versions se2021
- Siemens Solid Edge Se2021 — versions All versions < SE2021MP8
Weakness classification (CWE)
References
- productcert@siemens.com (Patch, x_refsource_MISC, Vendor Advisory)
- productcert@siemens.com (Patch, x_refsource_MISC, Vendor Advisory)
- productcert@siemens.com (VDB Entry, Third Party Advisory, x_refsource_MISC)
Frequently asked questions
- What is CVE-2021-41534?
- CVE-2021-41534 is a low-severity vulnerability in Siemens Nx 1980 Series, classified under Out-of-bounds Read. CVSS score: 3.3/10. Published 2021-09-28.
- How severe is CVE-2021-41534?
- Low severity. CVSS v3 base score is 3.3 out of 10.