CVE-2025-40811

A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
siemensCNA
7.8 HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
VendorProductVersion
siemenssolid_edge_se2024
-
siemenssolid_edge_se2024
224.0
siemenssolid_edge_se2024
224.0:update_0001
siemenssolid_edge_se2024
224.0:update_00010
siemenssolid_edge_se2024
224.0:update_00011
siemenssolid_edge_se2024
224.0:update_00012
siemenssolid_edge_se2024
224.0:update_00013
siemenssolid_edge_se2024
224.0:update_0002
siemenssolid_edge_se2024
224.0:update_0003
siemenssolid_edge_se2024
224.0:update_0004
siemenssolid_edge_se2024
224.0:update_0005
siemenssolid_edge_se2024
224.0:update_0006
siemenssolid_edge_se2024
224.0:update_0007
siemenssolid_edge_se2024
224.0:update_0008
siemenssolid_edge_se2024
224.0:update_0009
siemenssolid_edge_se2025
-
siemenssolid_edge_se2025
225.0
siemenssolid_edge_se2025
225.0:update_0001
siemenssolid_edge_se2025
225.0:update_0002
siemenssolid_edge_se2025
225.0:update_0003
siemenssolid_edge_se2025
225.0:update_0004
siemenssolid_edge_se2025
225.0:update_0005
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://cert-portal.siemens.com/productcert/html/ssa-541582.html