CVE-2022-39140 V33.1.262), V34.0.252, V34.1.242, V35.0.161 have a vulnerability.

The vendor has released a security patch for this issue and has provided the link to the patch on the Parasolid website. End users running vulnerable versions of the applications are advised to apply the patched to avoid any possible cyber attacks.

Parasolid – A Security Analysis

The Parasolid software is an application used for managing the geometric data in CAD/CAM.
There have been a number of security vulnerabilities discovered in this program and the vendor has released a patch to fix these vulnerabilities.
Due to the severity of the issue, companies are urged to install the patched immediately as there has been an increase in cyber attacks on companies that haven’t fixed their systems yet.
If your company is using Parasolid, you are advised to apply the patches that are available and avoid potential attacks.

How to Check Parasolid Version?

If you are a customer of Parasolid software, you can check your current version number by going to the Help menu. This will show you what version of the application is installed on your computer and if it is vulnerable.
If you have any questions about this security patch or the remediation process, please contact your professional support team at
http://www.parasolid.com/customer-support/

Parasolid Patch

The vendor has released a patch for this issue and has provided the link to the patch on their website. End users running vulnerable versions of the applications are advised to apply the patched to avoid any possible cyber attacks.

How can companies make sure they are keeping their websites up-to-date with security patches in order to avoid any possible cyber attacks?

Impact of CVE-2022 -39140

Cyber attacks against the vendor's application that runs on software such as Parasolid can happen if the vendor's software is adversely affected by this vulnerability. This vulnerability could be exploited by hackers to launch cyber attacks against the vendor's application, which in turn can lead to serious data loss or other problems.
The vendor has released a security patch for this issue and has provided the link to the patch on the Parasolid website. End users running vulnerable versions of the applications are advised to apply the patched immediately to avoid any possible cyber attacks.

Timeline

Published on: 09/13/2022 10:15:00 UTC
Last modified on: 09/13/2022 15:14:00 UTC

References

• https://cert-portal.siemens.com/productcert/pdf/ssa-518824.pdf
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-39140