Rewterz Threat Advisory – ICS: Siemens S7-1500 CPU devices Vulnerability
January 13, 2023Rewterz Threat Advisory – ICS: Siemens Mendix SAML Module Vulnerability
January 13, 2023Rewterz Threat Advisory – ICS: Siemens S7-1500 CPU devices Vulnerability
January 13, 2023Rewterz Threat Advisory – ICS: Siemens Mendix SAML Module Vulnerability
January 13, 2023Severity
High
Analysis Summary
CVE-2022-47967
Siemens Solid Edge could allow a remote attacker to execute arbitrary code on the system, caused by memory corruption in the DOCMGMT.DLL component. By persuading a victim to open a specially-crafted PAR, ASM, or DFT file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2022-47967
Affected Vendors
Siemens
Affected Products
- Siemens Solid Edge SE2021MP2
- Siemens Solid Edge SE2021
- Siemens Solid Edge SE2022
Remediation
Refer to Siemens Security Advisory for patch, upgrade or suggested workaround information.