CVE-2024-34773

A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 2). The affected applications contain a stack overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:siemens:solid_edge_se2024:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:solid_edge_se2024:224.0:-:*:*:*:*:*:*
cpe:2.3:a:siemens:solid_edge_se2024:224.0:update_0001:*:*:*:*:*:*

History

17 Jun 2026, 07:34

Type Values Removed Values Added
References () https://cert-portal.siemens.com/productcert/html/ssa-589937.html - () https://cert-portal.siemens.com/productcert/html/ssa-589937.html - Vendor Advisory
CWE CWE-787
CPE cpe:2.3:a:siemens:solid_edge_se2024:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:solid_edge_se2024:224.0:update_0001:*:*:*:*:*:*
cpe:2.3:a:siemens:solid_edge_se2024:224.0:-:*:*:*:*:*:*
First Time Siemens
Siemens solid Edge Se2024

21 Nov 2024, 09:19

Type Values Removed Values Added
Summary
  • (es) Se ha identificado una vulnerabilidad en Solid Edge (Todas las versiones &lt; V224.0 Actualización 2). Las aplicaciones afectadas contienen una vulnerabilidad de desbordamiento de pila al analizar archivos PAR especialmente manipulados. Esto podría permitir a un atacante ejecutar código en el contexto del proceso actual.
References () https://cert-portal.siemens.com/productcert/html/ssa-589937.html - () https://cert-portal.siemens.com/productcert/html/ssa-589937.html -

14 May 2024, 16:17

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-14 16:17

Updated : 2026-06-17 07:34


NVD link : CVE-2024-34773

Mitre link : CVE-2024-34773

CVE.ORG link : CVE-2024-34773


JSON object : View

Products Affected

siemens

  • solid_edge_se2024
CWE
CWE-121

Stack-based Buffer Overflow

CWE-787

Out-of-bounds Write