83 matches found
CISA Releases Seven Industrial Control Systems Advisories
CISA released seven Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-329-01 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share ICSA-25-329-02 Rockwell Automation Aren...
CVE-2025-11918
Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE files. Local attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of Arena®. Exploiting the vulnerability...
CVE-2025-11918
Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE files. Local attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of Arena®. Exploiting the vulnerability...
CVE-2025-11918
Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE files. Local attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of Arena®. Exploiting the vulnerability...
EUVD-2025-197610
Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE files. Local attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of Arena®. Exploiting the vulnerability...
CVE-2025-11918 Rockwell Automation Arena® Simulation Stack-Based Buffer Overflow Vulnerability
Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE files. Local attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of Arena®. Exploiting the vulnerability...
CVE-2025-11918 Rockwell Automation Arena® Simulation Stack-Based Buffer Overflow Vulnerability
Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE files. Local attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of Arena®. Exploiting the vulnerability...
PT-2025-46954
Name of the Vulnerable Software and Affected Versions Rockwell Automation Arena® affected versions not specified Description A stack-based buffer overflow flaw exists in the parsing of DOE files within Rockwell Automation Arena®. A local attacker can exploit this issue by opening a malicious DOE...
EUVD-2024-50649
Malicious code in bioql PyPI...
Rockwell Automation Arena Simulation DOE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Rockwell Automation Arena Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...
CVE-2025-7025
A memory abuse issue exists in the Rockwell Automation Arena® Simulation. A custom file can force Arena Simulation to read and write past the end of memory space. Successful use requires user action, such as opening a bad file or webpage. If used, a threat actor could execute code or disclose...
Rockwell Automation Arena Simulation 安全漏洞
Rockwell Automation Arena Simulation is a discrete event simulation software from Rockwell Automation USA. A security vulnerability exists in Rockwell Automation Arena Simulation that stems from improper memory handling and could lead to code execution or information disclosure...
Rockwell Automation Arena Simulation 安全漏洞
Rockwell Automation Arena Simulation is a discrete event simulation software from Rockwell Automation USA. A security vulnerability exists in Rockwell Automation Arena Simulation that stems from improper memory handling and could lead to code execution or information disclosure...
CVE-2025-6377
A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE file can force Arena Simulation to write beyond the boundaries of an allocated object. Exploitation requires user interaction, such as opening a malicious file within the software. If exploited, a threa...
Rockwell Automation Arena 安全漏洞
Rockwell Automation Arena is a discrete-event simulation software developed by Rockwell Automation for a wide range of manufacturing, logistics, and service industries. A code execution vulnerability exists in Rockwell Automation Arena, which is caused by out-of-bounds writes to specially crafted...
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena arises from reading data beyond the acceptable range in memory. This allows attackers to exploit the protected information and execute arbitrary code.
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena relates to reading data beyond the allowable range in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information and execute arbitrary code, provided that the...
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena arises from buffer overflows in the stack, allowing attackers to disclose sensitive information and execute arbitrary code.
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to disclose sensitive information and execute arbitrary code, provided that the user opens a...
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena arises from reading data beyond the acceptable range in memory. This allows attackers to exploit the protected information and execute arbitrary code.
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena relates to reading data beyond the allowable range in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information and execute arbitrary code, provided that the...
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena, related to errors during initialization of variables, allows a perpetrator to execute arbitrary code.
The vulnerability of the software for discrete event simulation and automation in Rockwell Automation Arena is related to errors during initialization of variables. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created DOE file...
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena lies in the ability to write code beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena lies in the writing beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created DOE file...