Uninitialized Pointer Access in Solid Edge SE2026 by Siemens
CVE-2026-44411

7.3HIGH

Key Information:

Vendor: Siemens
Status: Solid Edge Se2026
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-44411?

A noteworthy vulnerability has been found in Solid Edge SE2026, specifically affecting all versions prior to V226.0 Update 5. This flaw arises from uninitialized pointer access during the parsing of specially crafted PAR files. If exploited, an attacker could potentially execute arbitrary code in the context of the current process, posing a serious security risk to affected systems and users.

Affected Version(s)

Solid Edge SE2026 0

References

https://cert-portal.siemens.com/productcert/html/ssa-9211...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
May 6, 2026

CVE-2026-44411 Data

JSON