Siemens Solid Edge

Plan Patch7.8ICS-CERT ICSA-21-159-09Jun 8, 2021

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

Siemens Solid Edge contains a buffer overflow vulnerability (CWE-787) in the DFT file parser. When a user opens a malicious DFT file, the application may crash or execute arbitrary code with the privileges of the user running Solid Edge. This requires user interaction (opening a file) and affects design/CAD workstations.

What this means

What could happen

An attacker can craft a malicious DFT file that, when opened in Solid Edge, causes the application to crash or potentially execute commands on the workstation. This affects engineering teams and could disrupt CAD/design work or compromise the workstation used to configure and monitor your control systems.

Who's at risk

Engineering and design teams who use Siemens Solid Edge SE2020 or SE2021 on workstations are affected. This primarily impacts CAD/design personnel and anyone who processes or reviews DFT (Solid Edge drawing/design) files. In utility and water authority environments, this affects engineering workstations used for SCADA system design, control logic visualization, and equipment documentation.

How it could be exploited

An attacker sends a malicious DFT file via email or file share to an engineer. When the engineer opens the file in Solid Edge to view or edit it, the malformed file triggers a buffer overflow in the parser, causing a crash or allowing code execution in the context of the user account running Solid Edge.

Prerequisites

User must open a malicious DFT file in Solid Edge
Engineer/designer must be tricked or socially engineered into opening the file

Local exploitation only (not remotely exploitable)requires user interaction (file opening)low complexity attackaffects engineering workstationsSE2021 has no patch available

Exploitability

Low exploit probability (EPSS 0.8%)

Affected products (2)

1 with fix1 EOL

ProductAffected VersionsFix Status

Solid Edge SE2020<2020MP142020MP14

Solid Edge SE2021<SE2021MP5No fix (EOL)

Remediation & Mitigation

0/5

Do now

0/2

WORKAROUNDTrain users to avoid opening DFT files from unknown or untrusted sources

HARDENINGConfigure email and file-sharing systems to block or warn on DFT file attachments from external sources

Schedule — requires maintenance window

0/2

Patching may require device reboot — plan for process interruption

Solid Edge SE2020

HOTFIXUpdate Solid Edge SE2020 to version 2020MP14 or later

Solid Edge SE2021

HOTFIXUpdate Solid Edge SE2021 to version SE2021MP5 or later

Mitigations - no patch available

0/1

Solid Edge SE2021 has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:

HARDENINGRestrict Solid Edge installations to engineering workstations that are segmented from operational networks

CVEs (2)

CVE-2021-31342 CVE-2021-31343

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/7bab538a-8677-4c43-b31e-ca0dd03ecee3