cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-43517,https://securityvulnerability.io/vulnerability/CVE-2022-43517,Improper File Permission Management in Simcenter STAR-CCM+ by Siemens,"A vulnerability exists in Simcenter STAR-CCM+ that arises from improper assignment of file permissions to installation folders. This misconfiguration can enable a local attacker using an unprivileged account to gain unauthorized access to service executables. By exploiting this flaw, the attacker can override or modify these executables, thereby potentially elevating their privileges within the system.",Siemens,Simcenter Star-ccm+,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,false,false,2022-12-13T00:00:00.000Z,0
CVE-2022-34659,https://securityvulnerability.io/vulnerability/CVE-2022-34659,Information Disclosure Vulnerability in Simcenter STAR-CCM+ by Siemens,"A vulnerability has been identified in Simcenter STAR-CCM+ that affects all versions when the Power-on-Demand public license server is utilized. This vulnerability allows applications to inadvertently expose user details, including the user name, host name, and display name. If exploited, an attacker could gain access to this sensitive information, potentially leading to further security issues.",Siemens,Simcenter Star-ccm+,7.5,HIGH,0.0011500000255182385,false,,false,false,false,,false,false,2022-08-10T11:17:56.000Z,0
CVE-2022-24661,https://securityvulnerability.io/vulnerability/CVE-2022-24661,,A vulnerability has been identified in Simcenter STAR-CCM+ Viewer (All versions < V2022.1). The starview+.exe contains a memory corruption vulnerability while parsing specially crafted .SCE files. This could allow an attacker to execute code in the context of the current process.,Siemens,Simcenter Star-ccm+ Viewer,7.8,HIGH,0.0011399999493733048,false,,false,false,false,,false,false,2022-03-08T11:31:31.000Z,0
CVE-2021-42024,https://securityvulnerability.io/vulnerability/CVE-2021-42024,,A vulnerability has been identified in Simcenter STAR-CCM+ Viewer (All versions < 2021.3.1). The starview+.exe application lacks proper validation of user-supplied data when parsing scene files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process.,Siemens,Simcenter Star-ccm+ Viewer,7.8,HIGH,0.0013500000350177288,false,,false,false,false,,false,false,2021-12-14T12:06:38.000Z,0
CVE-2021-25665,https://securityvulnerability.io/vulnerability/CVE-2021-25665,,A vulnerability has been identified in Simcenter STAR-CCM+ Viewer (All versions < V2021.2.1). The starview+.exe application lacks proper validation of user-supplied data when parsing scene files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13700),Siemens,Simcenter Star-ccm+ Viewer,7.8,HIGH,0.0012100000167265534,false,,false,false,false,,false,false,2021-09-14T10:47:22.000Z,0