CVE-2026-44411

HIGH EPSS 1.3%

Published May 12, 20261mo ago · Modified Jun 29, 20261d ago

7.3 CVSS 4.0

High

Published May 12, 2026 1mo ago

Last Modified Jun 29, 2026 1d ago

Description

A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current process.

CVSS Details

Base Score

7.3

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector Local

Attack Complexity High

Privileges Required None

User Interaction P

Scope X

Threat Intelligence

EPSS Exploit Probability

1.3% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-824

Affected Products 6

Vendor	Product	Version	Range
siemens	solid_edge_se2026	*	<226.0
siemens	solid_edge_se2026	226.0	any
siemens	solid_edge_se2026	226.0	any
siemens	solid_edge_se2026	226.0	any
siemens	solid_edge_se2026	226.0	any
siemens	solid_edge_se2026	226.0	any

References 1

cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-921111.html

MitigationVendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.