Buffer overflow in Siemens Parasolid V33.1

CVE-2022-39139

A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.262), Parasolid V34.0 (All versions < V34.0.252), Parasolid V34.1 (All versions < V34.1.242), Parasolid V35.0 (All versions < V35.0.161), Simcenter Femap V2022.1…

Vulnerability class: Buffer Overflow

EPSS: 0.001 (19.7th percentile) — read the EPSS interpretation.

Affected products

Siemens Parasolid V33.1 — versions All versions < V33.1.262
Siemens Parasolid V34.0 — versions All versions < V34.0.252
Siemens Parasolid V34.1 — versions All versions < V34.1.242
Siemens Parasolid V35.0 — versions All versions < V35.0.161
Siemens Simcenter Femap V2022.1 — versions All versions < V2022.1.3
Siemens Simcenter Femap V2022.2 — versions All versions < V2022.2.2

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf (x_refsource_MISC)