Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-27858
HistoryOct 27, 2023 - 7:15 p.m.

Remote code execution

2023-10-2719:15:00
PRIOn knowledge base
www.prio-n.com
3
remote code execution
rockwell automation
arena simulation
unauthorized code
uninitialized pointer
malicious file
confidentiality
integrity
availability

0.0005 Low

EPSS

Percentile

18.3%

JSON

Rockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that could potentially allow a malicious user to commit unauthorized code to the software by using an uninitialized pointer in the application.  The threat-actor could then execute malicious code on the system affecting the confidentiality, integrity, and availability of the product.  The user would need to open a malicious file provided to them by the attacker for the code to execute.

Related

cve 1
nvd 1
cvelist 1
ics 1
cve
cve
CVE-2023-27858
2023-10-27 19:15:41
nvd
nvd
CVE-2023-27858
2023-10-27 19:15:41
cvelist
cvelist
CVE-2023-27858 Rockwell Automation Arena® Simulation Uninitialized Pointer Vulnerability
2023-10-27 18:58:26
ics
ics
Rockwell Automation Arena
2023-10-26 12:00:00

0.0005 Low

EPSS

Percentile

18.3%

JSON
Related for PRION:CVE-2023-27858
cve1nvd1cvelist1ics1