Out of Bounds Read Vulnerability in Solid Edge SE2025 by Siemens
CVE-2025-40740

7.3HIGH

Key Information:

Vendor: Siemens
Status: Solid Edge Se2025
Vendor: CVE Published:; 8 July 2025

What is CVE-2025-40740?

A vulnerability exists in Solid Edge SE2025, specifically in versions prior to V225.0 Update 5, allowing an out of bounds read when processing maliciously crafted PAR files. This could lead to unauthorized code execution within the context of the currently running process, posing significant risks to system integrity. Users are advised to apply the latest updates to mitigate potential exploitation.

Affected Version(s)

Solid Edge SE2025 0

References

https://cert-portal.siemens.com/productcert/html/ssa-0917...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 8, 2025
Vulnerability Reserved
Apr 16, 2025