CVE-2021-37180

Name of the Vulnerable Software and Affected Versions Solid Edge SE2021 versions prior to SE2021MP7

Description A vulnerability has been identified in the PSKERNEL.dll library, which lacks proper validation while parsing user-supplied OBJ files. This could cause an out of bounds access to an uninitialized pointer, allowing an attacker to execute code in the context of the current process.

Recommendations For Solid Edge SE2021 versions prior to SE2021MP7, update to a version that includes the necessary security patches, specifically SE2021MP7 or later, to resolve the issue. As a temporary workaround, consider restricting the use of the PSKERNEL.dll library when parsing OBJ files from untrusted sources until a patch is applied.