CVE-2025-40809 HIGH

CVE-2025-40809

Vendor Siemens
Product Solid Edge SE2024
Weakness CWE-787
Published October 14, 2025
Last update October 14, 2025

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds write vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the current process.

Key dates

02Disclosure timeline

October 14, 2025 CVE published
October 14, 2025 Record updated