CVE-2023-24565

Name of the Vulnerable Software and Affected Versions Solid Edge SE2022 versions prior to V222.0MP12 Solid Edge SE2023 versions prior to V223.0Update2

Description A vulnerability has been identified in the affected application, which contains an out of bounds read past the end of an allocated buffer while parsing a specially crafted STL file. This could allow an attacker to disclose sensitive information.

Recommendations For Solid Edge SE2022 versions prior to V222.0MP12, update to version V222.0MP12 or later. For Solid Edge SE2023 versions prior to V223.0Update2, update to version V223.0Update2 or later. As a temporary workaround, consider avoiding the use of specially crafted STL files until a patch is available.