关键信息 SSA-535115: Data Validation Vulnerability in NX Before V2512 CVSS Scores - CVSS v3.1 Base Score: 7.8 - CVSS v4.0 Base Score: 7.3 Affected Products and Versions - NX: All versions < V2512 (affected by CVE-2026-22923) Mitigations - Upgrade to NX V2512 or later version. Summary - Siemens NX is affected by a missing data validation vulnerability that could allow an attacker with local access on a compromised system to interfere with internal data during the PDF export process, potentially leading to arbitrary code execution. Vulnerability Description - The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process, potentially leading to arbitrary code execution. - CVE-2026-22923 - CWE-121: Stack-based Buffer Overflow