CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

44 matches found

NVD•added 2024/10/08 9:15 a.m.•8 views

CVE-2024-47195

A vulnerability has been identified in ModelSim All versions V2024.3, Questa All versions V2024.3. gdb.exe in affected applications allows a specific executable file to be loaded from the current working directory. This could allow an authenticated local attacker to inject arbitrary code and...

7.3CVSS0.00046EPSS

Exploits0References1

NVD•added 2024/10/08 9:15 a.m.•9 views

CVE-2024-47196

A vulnerability has been identified in ModelSim All versions V2025.2, Questa All versions V2025.2. vsimk.exe in affected applications allows a specific tcl file to be loaded from the current working directory. This could allow an authenticated local attacker to inject arbitrary code and escalate...

7.3CVSS0.00074EPSS

Exploits0References1

OSV•added 2024/10/08 9:15 a.m.•1 views

CVE-2024-47196

7.3CVSS5.8AI score

Exploits0References1

OSV•added 2024/10/08 9:15 a.m.•0 views

CVE-2024-47195

7.3CVSS5.8AI score0.00046EPSS

Exploits0References1

NVD•added 2024/10/08 9:15 a.m.•14 views

CVE-2024-47194

A vulnerability has been identified in ModelSim All versions V2024.3, Questa All versions V2024.3. vish2.exe in affected applications allows a specific DLL file to be loaded from the current working directory. This could allow an authenticated local attacker to inject arbitrary code and escalate...

7.3CVSS0.00046EPSS

Exploits0References1

OSV•added 2024/10/08 9:15 a.m.•2 views

CVE-2024-47194

7.3CVSS5.8AI score

Exploits0References1

Vulnrichment•added 2024/10/08 8:40 a.m.•12 views

CVE-2024-47196

A vulnerability has been identified in ModelSim All versions V2024.3, Questa All versions V2024.3. vsimk.exe in affected applications allows a specific tcl file to be loaded from the current working directory. This could allow an authenticated local attacker to inject arbitrary code and escalate...

6.7CVSS7.2AI score0.00074EPSS

Exploits0References1

CVE•added 2024/10/08 8:40 a.m.•44 views

CVE-2024-47196

CVE-2024-47196 affects Siemens Questa and ModelSim (ModelSim all versions before V2024.3; Questa before V2024.3). The vulnerability arises from vsimk.exe loading a specific TCL file from the current working directory, enabling an authenticated local attacker to inject arbitrary code and escalate ...

7.3CVSS6.8AI score0.00074EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/10/08 8:40 a.m.•18 views

CVE-2024-47196

6.7CVSS0.00074EPSS

Exploits0References1

Cvelist•added 2024/10/08 8:40 a.m.•18 views

CVE-2024-47195

6.7CVSS0.00046EPSS

Exploits0References1

Vulnrichment•added 2024/10/08 8:40 a.m.•11 views

CVE-2024-47195

6.7CVSS7.2AI score0.00046EPSS

Exploits0References1

CVE•added 2024/10/08 8:40 a.m.•42 views

CVE-2024-47195

CVE-2024-47195 affects Siemens Questa and ModelSim (all versions prior to V2024.3). The issue is an Uncontrolled Search Path Element that allows a local attacker to load a crafted file from the current working directory, enabling arbitrary code execution and privilege escalation when gdb.exe is l...

7.3CVSS7.2AI score0.00046EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/10/08 8:40 a.m.•11 views

CVE-2024-47194

6.7CVSS7.2AI score0.00046EPSS

Exploits0References1

CVE•added 2024/10/08 8:40 a.m.•55 views

CVE-2024-47194

Summary (CVE-2024-47194) : Siemens Questa and ModelSim are affected up to versions prior to V2024.3. The vulnerability arises because the vish2.exe launcher can load a DLL from the current working directory, enabling an authenticated local attacker to execute arbitrary code and escalate privilege...

7.3CVSS7AI score0.00046EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/10/08 12:0 a.m.•1 views

Siemens ModelSim和Questa 代码问题漏洞

Questa and ModelSim simulators are used worldwide for simulating, debugging and verifying integrated circuit designs, among other things. An uncontrolled search path element vulnerability exists in Siemens Questa and ModelSim, which can be exploited by an authenticated, local attacker to inject...

7.3CVSS7AI score0.00046EPSS

Exploits0References2

ICS•added 2024/10/08 12:0 a.m.•18 views

Siemens Questa and ModelSim

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

7.3CVSS7.5AI score0.00074EPSS

Exploits0References10

CNNVD•added 2024/10/08 12:0 a.m.•2 views

Siemens ModelSim 代码问题漏洞

7.3CVSS7AI score0.00046EPSS

Exploits0References2

CNNVD•added 2024/10/08 12:0 a.m.•1 views

Siemens ModelSim 代码问题漏洞

7.3CVSS7AI score0.00074EPSS

Exploits0References3

ICS•added 2021/12/16 12:0 a.m.•31 views

Siemens Questa and ModelSim

1. EXECUTIVE SUMMARY CVSS v3 9.0 ATTENTION: Low attack complexity Vendor: Siemens Equipment: Questa Simulation and ModelSim Simulation Vulnerability: Insufficiently Protected Credentials 2. UPDATE OR REPOSTED INFORMATION This updated advisory is a follow-up to the original advisory titled...

6.5CVSS6.7AI score0.00142EPSS

Exploits0References5

CNVD•added 2021/12/16 12:0 a.m.•29 views

ModelSim Simulation and Questa Simulation Underprotected Credential Vulnerability

Questa and ModelSim simulators are used worldwide to simulate, debug, and verify integrated circuit designs, etc. ModelSim Simulation and Questa Simulation do not protect sufficient credentials, and the RSA white-box implementation in the affected application does not adequately protect the...

6.5CVSS4.9AI score0.00142EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by