High severity7.8NVD Advisory· Published Dec 13, 2022· Updated Jun 17, 2026
CVE-2022-46345
CVE-2022-46345
Description
A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.264), Parasolid V34.0 (All versions < V34.0.252), Parasolid V34.1 (All versions < V34.1.242), Parasolid V35.0 (All versions < V35.0.170), Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2022 (All versions), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds write past the end of an allocated structure while parsing specially crafted X_B files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19070)
Affected products
8- Range: < V33.1.264, < V34.0.252, < V34.1.242, < V35.0.170
- Range: < V222.0MP12, < V223.0Update2
- Siemens/Parasolid V33.1v5Range: All versions < V33.1.264
- Siemens/Parasolid V34.0v5Range: All versions < V34.0.252
- Siemens/Parasolid V34.1v5Range: All versions < V34.1.242
- Siemens/Parasolid V35.0v5Range: All versions < V35.0.170
All versions+ 1 more
- (no CPE)range: All versions
- (no CPE)range: All versions < V223.0Update2
Patches
Vulnerability mechanics
References
2- cert-portal.siemens.com/productcert/pdf/ssa-491245.pdfnvdVendor Advisory
- cert-portal.siemens.com/productcert/pdf/ssa-588101.pdfnvdVendor Advisory
News mentions
0No linked articles in our index yet.