Stack-Based Overflow Vulnerability in Solid Edge SE2025 by Siemens
CVE-2025-40741

7.3HIGH

Key Information:

Vendor: Siemens
Status: Solid Edge Se2025
Vendor: CVE Published:; 8 July 2025

What is CVE-2025-40741?

A stack-based overflow vulnerability has been discovered in Solid Edge SE2025, affecting all versions prior to V225.0 Update 5. This flaw occurs during the parsing of specially crafted CFG files, potentially allowing an attacker to execute arbitrary code within the context of the current process. It is crucial for users to apply the latest updates to safeguard against potential exploitation.

Affected Version(s)

Solid Edge SE2025 0

References

https://cert-portal.siemens.com/productcert/html/ssa-0917...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 8, 2025
Vulnerability Reserved
Apr 16, 2025