Primary

Context

Siemens PS/IGES Parasolid Translator Component Out-of-Bounds Read Vulnerability Allowing Application Crash or Code Execution

Vulnerability

A vulnerability exists in the PS/IGES Parasolid Translator Component, affecting all versions prior to 29.0.258. The issue is an out-of-bounds read vulnerability that occurs when the application parses specially crafted IGS files. This vulnerability could be exploited to crash the application or execute code within the context of the current process.

Impact

Exploitation of this vulnerability leads to an out-of-bounds read, which can cause the application to crash or allow arbitrary code execution in the context of the current process.

Remediation

Users are advised to update to version 29.0.258 or later. The latest version can be downloaded from the Siemens FTP site.

Added: Nov 17, 2025, 12:19 PM

Updated: Nov 17, 2025, 12:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.8

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.8

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens PS/IGES Parasolid Translator Component Out-of-Bounds Read Vulnerability Allowing Application Crash or Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating