Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the limited exposure of information related to the targeted workstation.
File data ot_500274.nasl
Vendor | Product | Version | CPE |
---|---|---|---|
rockwellautomation | arena_simulation_software | * | cpe:2.3:a:rockwellautomation:arena_simulation_software:*:*:*:*:*:*:*:* |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13511
www.us-cert.gov/ics/advisories/icsa-19-213-05
www.zerodayinitiative.com/advisories/ZDI-20-810/
www.zerodayinitiative.com/advisories/ZDI-20-811/
www.zerodayinitiative.com/advisories/ZDI-20-812/
www.zerodayinitiative.com/advisories/ZDI-20-813/
www.zerodayinitiative.com/advisories/ZDI-20-814/