Siemens Solid Edge
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Siemens Solid Edge.
By the Year
In 2026 there have been 0 vulnerabilities in Siemens Solid Edge. Last year, in 2025 Solid Edge had 9 security vulnerabilities published. Right now, Solid Edge is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 9 | 7.72 |
| 2024 | 24 | 7.78 |
| 2023 | 30 | 7.41 |
| 2022 | 4 | 7.80 |
| 2021 | 27 | 7.19 |
It may take a day or so for new Solid Edge vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Siemens Solid Edge Security Vulnerabilities
TLS cert validation flaw in Siemens IAM client COMOS V10.6, NX V2412
CVE-2025-40800
7.4 - High
- December 09, 2025
A vulnerability has been identified in COMOS V10.6 (All versions), COMOS V10.6 (All versions), NX V2412 (All versions < V2412.8700), NX V2506 (All versions < V2506.6000), Simcenter 3D (All versions < V2506.6000), Simcenter Femap (All versions < V2506.0002), Solid Edge SE2025 (All versions < V225.0 Update 10), Solid Edge SE2026 (All versions < V226.0 Update 1). The IAM client in affected products is missing server certificate validation while establishing TLS connections to the authorization server. This could allow an attacker to perform a man-in-the-middle attack.
Improper Certificate Validation
out-of-bounds read in Parasolid IGES Translator < 29.0.258
CVE-2025-40936
7.8 - High
- November 17, 2025
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V29.0.258), Solid Edge (All versions < V226.00 Update 03). The affected applications contains an out of bounds read vulnerability while parsing specially crafted IGS files. This could allow an attacker to crash the application or execute code in the context of the current process. (ZDI-CAN-26755)
Out-of-bounds Read
DLL Hijack in Siemens Software Center < v3.5 & Solid Edge SE2025 < v225.0
CVE-2025-40827
7.8 - High
- November 11, 2025
A vulnerability has been identified in Siemens Software Center (All versions < V3.5), Solid Edge SE2025 (All versions < V225.0 Update 10). The affected application is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code via placing a crafted DLL file on the system.
DLL preloading
Solid Edge SE2025 <V225.0 U11: Unauth MITM via License Service Cert Validation
CVE-2025-40744
7.5 - High
- November 11, 2025
A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 11). Affected applications do not properly validate client certificates to connect to License Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks.
Improper Certificate Validation
Solid Edge SE2024/2025 OOB Read in PRT parser (224.0U14/225.0U6)
CVE-2025-40812
7.8 - High
- October 14, 2025
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process.
Out-of-bounds Read
OOB Read in Solid Edge PRT Parser (SE2024/SE2025 < V224/V225)
CVE-2025-40811
7.8 - High
- October 14, 2025
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2024/2025 OOB Write in PRT Parser (V224.0 < u14, V225.0 < u6)
CVE-2025-40810
7.8 - High
- October 14, 2025
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds write vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process.
Memory Corruption
Solid Edge SE2024/25 OOB Write in PRT File Parsing (All V < 224.0U14, 225.0U6)
CVE-2025-40809
7.8 - High
- October 14, 2025
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds write vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process.
Memory Corruption
Out-of-Bounds Read in Solid Edge SE2025 < V225.0 Update 5 Enables Code Exec
CVE-2025-40739
7.8 - High
- July 08, 2025
A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2024 Integer Underflow Vulnerability in PAR File Parsing
CVE-2024-54095
7.8 - High
- December 10, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 10). The affected application is vulnerable to integer underflow vulnerability which can be triggered while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Integer underflow
Solid Edge SE2024 ASM File Parsing Heap-Based Buffer Overflow Vulnerability
CVE-2024-54093
7.8 - High
- December 10, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process.
Heap-based Buffer Overflow
Solid Edge SE2024 PAR File Parsing Heap-Based Buffer Overflow
CVE-2024-54094
7.8 - High
- December 10, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Heap-based Buffer Overflow
Solid Edge SE2024 DLL Hijacking Vulnerability
CVE-2024-47942
7.3 - High
- November 12, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 9). The affected applications suffer from a DLL hijacking vulnerability. This could allow an attacker to execute arbitrary code via placing a crafted DLL file on the system.
DLL preloading
Solid Edge SE2024 Out-of-Bounds Read Vulnerability in PAR File Parsing
CVE-2024-47941
7.8 - High
- November 12, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 9). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2024 Out-of-Bounds Read Vulnerability in PSM File Parsing
CVE-2024-47940
7.8 - High
- November 12, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 9). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PSM files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge <224.0 Update4 OOB read in PAR parser (RCE)
CVE-2024-34772
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 4). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge <V224.0 Update 5 heap-overflow in PAR parsing
CVE-2024-33489
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 5). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Solid Edge V224 U5 OOB Read in PAR Parser (CVE-2024-33490)
CVE-2024-33490
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge <V224.0U5: OOB Read in PAR Parser Enables RCE
CVE-2024-33492
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Out-Of-Bounds Read in Solid Edge par Parser <V224.0 Update5
CVE-2024-33493
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge <V224.0 Update 2 Heap Overflow in PAR Parser
CVE-2024-34771
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 2). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Solid Edge Stack Overflow in PAR Parser <V224.0 Update 2
CVE-2024-34773
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 2). The affected applications contain a stack overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Stack Overflow
Solid Edge OOB Read CVE-2024-33491 V<224.0 Update 5
CVE-2024-33491
7.8 - High
- May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 (<V223.0 U10) OOB Read CVE-2023-49124
CVE-2023-49124
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 <V223.0 Update 10 Uninitialized Pointer in PAR Parser Enables RCE
CVE-2023-49130
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.
Access of Uninitialized Pointer
Solid Edge SE2023 PAR File Stack Overflow (pre V223.0 Update 10)
CVE-2023-49129
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected applications contain a stack overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Memory Corruption
Solid Edge SE2023 <V223.0 Update10> OOB Write in PAR Parser
CVE-2023-49128
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted PAR file. This could allow an attacker to execute code in the context of the current process.
Memory Corruption
OOB Read in Solid Edge SE2023 (Before V223.0 U10) PAR Parser | CVE-2023-49127
CVE-2023-49127
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 < v223.0 Update 10: OOB Read in PAR Parser
CVE-2023-49126
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 (<V223.0 U10) Heap Buffer Overflow in PAR Parser
CVE-2023-49122
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Memory Corruption
Solid Edge SE2023 <V223.0 Update10 Heap Buffer Overflow in PAR Parsing
CVE-2023-49121
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Memory Corruption
Solid Edge SE2023 < V223.0 Update 10 Uninit Ptr Access in PAR Parser
CVE-2023-49131
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.
Access of Uninitialized Pointer
Solid Edge SE2023 (V<223.0U10) Uninit Pointer Access in PAR Parser Causing RCE
CVE-2023-49132
7.8 - High
- January 09, 2024
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.
Access of Uninitialized Pointer
Solid Edge SE2023 OOB Read via DFT Parse (pre V223.0U7)
CVE-2023-39188
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
OOB Write in Solid Edge SE2023 <V223.0 Upd7 DFT Parser
CVE-2023-39419
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds write past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process.
Memory Corruption
UAF in Solid Edge SE2023 <V223.0 U2 DWG Parser (Win)
CVE-2023-39549
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 2). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted DWG file. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-19562)
Dangling pointer
CVE-2023-39182: OOB Read & Code Exec in Solid Edge SE2023 <V223.0U7 Parsing DFTs
CVE-2023-39182
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 OOB Read in PSM File Parser (before V223.0 U7)
CVE-2023-39183
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PSM files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 (V223.0 Upd 7) OOB Read in PSM File Parsing
CVE-2023-39184
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PSM files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 < V223.0 Update 7: OOB Read in PAR file parsing
CVE-2023-39185
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 (<V223.0 U7) OOB Read in DFT Parsing
CVE-2023-39186
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 < V223.0 U7: OOB read in DFT files leads to code exec
CVE-2023-39187
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2023 OOB Write in PAR Parser (Pre V223.0 Update 7)
CVE-2023-39181
7.8 - High
- August 08, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted PAR file. This could allow an attacker to execute code in the context of the current process.
Memory Corruption
Solid Edge SE2023 STP Memory Corruption <V223.0 U3 (Exec)
CVE-2023-30986
- May 09, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 3), Solid Edge SE2023 (All versions < V223.0 Update 2). Affected applications contain a memory corruption vulnerability while parsing specially crafted STP files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19561)
Memory Corruption
Solid Edge SE2023 OOB Read in OBJ Parser (All < V223.0U3)
CVE-2023-30985
5.5 - Medium
- May 09, 2023
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 3), Solid Edge SE2023 (All versions < V223.0 Update 2). Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow an attacker to disclose sensitive information. (ZDI-CAN-19426)
Solid Edge SE2022/23 OOB Read in PAR Files (CVE-2023-24558)
CVE-2023-24558
7.8 - High
- February 14, 2023
A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge SE2022/SE2023 OOB Read in PAR File (Vpre-V222.0MP12, <V223.0U2)
CVE-2023-24559
7.8 - High
- February 14, 2023
A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.
Out-of-bounds Read
Solid Edge OUTOFBOUND WRITE in PAR Parser (<222.0MP12/223.0Update2) Privilege Escalation
CVE-2023-24560
7.8 - High
- February 14, 2023
A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted PAR file. This could allow an attacker to to execute code in the context of the current process.
Memory Corruption
Uninitialized Pointer via Solid Edge SE2022/SE2023 (pre V222.0MP12/V223.0U2)
CVE-2023-24561
7.8 - High
- February 14, 2023
A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.
Access of Uninitialized Pointer
Solid Edge SE2022/23 Uninitialized Pointer Access in PAR Parser (V < 222.0MP12 / < 223.0U2)
CVE-2023-24562
7.8 - High
- February 14, 2023
A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2023 (All versions < V223.0Update2). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.
Access of Uninitialized Pointer
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Siemens Solid Edge or by Siemens? Click the Watch button to subscribe.
