CVE-2023-39549

Name of the Vulnerable Software and Affected Versions Solid Edge SE2023 versions prior to V223.0 Update 2

Description A use-after-free issue has been identified in the affected application, which could be triggered while parsing specially crafted DWG files. This could allow an attacker to execute code in the context of the current process.

Recommendations For Solid Edge SE2023 versions prior to V223.0 Update 2, update to V223.0 Update 2 or later to resolve the issue. As a temporary workaround, consider avoiding the use of specially crafted DWG files until a patch is applied. Restrict access to DWG file parsing functionality to minimize the risk of exploitation.