Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500274.NASLHistoryNov 08, 2019 - 12:00 a.m.
Rockwellautomation Arena Exposure of Sensitive Information to an Unauthorized Actor
2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
8
0.002 Low
EPSS
Percentile
54.3%
Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the limited exposure of information related to the targeted workstation.
File data ot_500274.nasl| Vendor | Product | Version | CPE |
|---|---|---|---|
| rockwellautomation | arena_simulation_software | * | cpe:2.3:a:rockwellautomation:arena_simulation_software:*:*:*:*:*:*:*:* |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13511
www.us-cert.gov/ics/advisories/icsa-19-213-05
www.zerodayinitiative.com/advisories/ZDI-20-810/
www.zerodayinitiative.com/advisories/ZDI-20-811/
www.zerodayinitiative.com/advisories/ZDI-20-812/
www.zerodayinitiative.com/advisories/ZDI-20-813/
www.zerodayinitiative.com/advisories/ZDI-20-814/
Related
zdi
zdi
cvelist
cvelist
CVE-2019-13511
2019-08-15 18:15:13
cve
cve
CVE-2019-13511
2019-08-15 19:15:10
prion
prion
Design/Logic Flaw
2019-08-15 19:15:00
nessus
nessus
Rockwell (CVE-2019-13511) (deprecated)
2022-02-07 00:00:00
nvd
nvd
CVE-2019-13511
2019-08-15 19:15:10
ics
ics
Rockwell Automation Arena Simulation Software (Update B)
2019-09-20 12:00:00