Full Report
Solid Edge is affected by multiple memory corruption vulnerabilities that could be triggered when the application is parsing PAR files. If a user is tricked to open a malicious file with the affected application, an attacker could leverage the vulnerability to execute arbitrary code in the context of the current process. Siemens has released a new version for Solid Edge and recommends to update to the latest version.
Analysis Summary
# Vulnerability: Multiple Memory Corruption Vulnerabilities in Solid Edge PAR File Parsing
## CVE Details
- CVE ID: CVE-2024-33489, CVE-2024-33490, CVE-2024-33491, CVE-2024-33492, CVE-2024-33493, CVE-2024-34771, CVE-2024-34772, CVE-2024-34773 (Multiple CVEs)
- CVSS Score: 7.8 (CVSSv3.1 High) / 7.3 (CVSSv4.0 High)
- CWE: CWE-122 (Heap-based Buffer Overflow), CWE-125 (Out-of-bounds Read), CWE-121 (Stack-based Buffer Overflow)
## Affected Systems
- Products: Solid Edge
- Versions: All versions prior to V224.0 Update 5 (for CVE-2024-33489 to CVE-2024-33493); All versions prior to V224.0 Update 2 (for CVE-2024-34771, CVE-2024-34773); All versions prior to V224.0 Update 4 (for CVE-2024-34772)
- Configurations: Exploitation requires the user to open a malicious PAR file within the affected application.
## Vulnerability Description
Solid Edge contains multiple memory corruption vulnerabilities (including heap-based buffer overflows, stack overflows, and out-of-bounds reads) triggered during the parsing of specially crafted PAR files. Successful exploitation allows an attacker to achieve arbitrary code execution in the context of the currently running Solid Edge process.
## Exploitation
- Status: Not explicitly stated as 'exploited in the wild'; however, exploitation is feasible via user interaction.
- Complexity: Low (for AV:L/AC:L/PR:N/UI:R attack vectors indicated across CVEs, though CVSSv4 suggests Higher complexity for Access Complexity/Privileges Required). The crucial factor is **User Interaction (UI:R)** is required.
- Attack Vector: Local (L) - requires the attacker to deliver a malicious file which must then be opened by the user.
## Impact
- Confidentiality: High (H)
- Integrity: High (H)
- Availability: High (H)
## Remediation
### Patches
Users must update to the following versions or later:
- For CVE-2024-33489, CVE-2024-33490, CVE-2024-33491, CVE-2024-33492, CVE-2024-33493: **Update to V224.0 Update 5 or later.**
- For CVE-2024-34771, CVE-2024-34773: **Update to V224.0 Update 2 or later.**
- For CVE-2024-34772: **Update to V224.0 Update 4 or later.**
### Workarounds
- **Do not open untrusted PAR files in Solid Edge.** This applies to all listed CVEs.
- Follow general Siemens security recommendations, including protecting network access to devices.
## Detection
- Detection methods are not explicitly detailed, but indicators would typically involve monitoring for unexpected process behavior or crashes originating from the Solid Edge process after loading user-supplied PAR files.
- Further detection guidance should be sought in the specific sections referenced within the security advisory.
## References
- Vendor Advisory: SSA-589937
- Siemens Product Support: hxxps://support.sw.siemens.com/product/246738425/
- Siemens Cert Portal Advisories: hxxps://www-siemens-com/cert/advisories
- Siemens Security Terms of Use: hxxps://www-siemens-com/terms\_of\_use