CVSS Score v3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.0050
66.4th percentile
Risk Priority
16
60% EPSS · 20% KEV · 20% CVSS
Summary
CVE-2021-22647 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Luxion Keyshot . Its CVSS base score is 7.8 (High).
Operationally, ranked in the top 33.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Vulnerability
Related Threats
Affected Assets
Mitigating Controls
Vulnerability details
Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are vulnerable to multiple out-of-bounds write issues while processing project files, which…
more may allow an attacker to execute arbitrary code.
CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
luxion
keyshot network rendering
≤ 10.1
luxion
keyshot viewer
≤ 10.1
siemens
solid edge se2020 firmware
all versions
siemens
solid edge se2021 firmware
all versions
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.
References
Third Party Advisory · ics-cert@hq.dhs.gov
Third Party Advisory, US Government Resource · ics-cert@hq.dhs.gov
Third Party Advisory, VDB Entry · ics-cert@hq.dhs.gov
Third Party Advisory, VDB Entry · ics-cert@hq.dhs.gov
Third Party Advisory, VDB Entry · ics-cert@hq.dhs.gov
Third Party Advisory, VDB Entry · ics-cert@hq.dhs.gov
Third Party Advisory, VDB Entry · ics-cert@hq.dhs.gov
Third Party Advisory · af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory, US Government Resource · af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory, VDB Entry · af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory, VDB Entry · af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory, VDB Entry · af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory, VDB Entry · af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory, VDB Entry · af854a3a-2127-422b-91ae-364da2661108