ICSA-21-350-13
·
Published 2021-12-16
·
View on CISA ICS-CERT ↗
Siemens Questa and ModelSim
CVSS 9.0
CRITICAL
Risk Summary
Successful exploitation of this vulnerability could allow access to unencrypted data.
CVEs (1)
Remediations
- Siemens recommends upgrading to the lastest version of the following product, login is required: ModelSim Simulation new releases.
- Siemens recommends upgrading to the lastest version of the following product, login is required: Questa Simulation new releases.
- Company-internal use of encrypted design IP data: Apply technical and procedural measures to ensure access to the data is granted on a need-to-know basis.
- Companies that deliver encrypted design IP data to their customers: Ensure procedural and contractual measures are in place that minimize the risk of unauthorized access to the data.
Affected Vendors
Siemens
Affected Products (2)
Siemens
·
ModelSim Simulation
vers:all/*
Siemens
·
Questa Simulation
vers:all/*
Affected Sectors
Multiple Sectors
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more