Published: 23/02/2021 Updated: 25/10/2022

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Luxion KeyShot versions before 10.1, Luxion KeyShot Viewer versions before 10.1, Luxion KeyShot Network Rendering versions before 10.1, and Luxion KeyVR versions before 10.1 have multiple NULL pointer dereference issues while processing project files, which may allow an malicious user to execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
luxion keyshot network rendering
luxion keyvr
luxion keyshot viewer
luxion keyshot
siemens solid_edge_se2020_firmware
siemens solid_edge_se2021_firmware

CWE-119 https://us-cert.cisa.gov/ics/advisories/icsa-21-035-01 https://cert-portal.siemens.com/productcert/pdf/ssa-231216.pdf https://www.zerodayinitiative.com/advisories/ZDI-21-317/https://www.zerodayinitiative.com/advisories/ZDI-21-325/https://nvd.nist.gov https://www.zerodayinitiative.com/advisories/ZDI-21-317/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-22649

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect