CVE-2022-47967

A vulnerability has been identified in Solid Edge (All versions < V2023 MP1). The DOCMGMT.DLL contains a memory corruption vulnerability that could be triggered while parsing files in different file formats such as PAR, ASM, DFT. This could allow an attacker to execute code in the context of the current process.

Published: Jan 10, 2023
Updated: Apr 14, 2023
CVE: CVE-2022-47967
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-119
CWE-787

Affected Software
References

Software	From	Fixed in
siemens / solid_edge	-	se2023
siemens / solid_edge	se2023	se2023.x

https://cert-portal.siemens.com/productcert/pdf/ssa-997779.pdf

Vulnerability Database

289,784

CVE-2022-47967