Lucene search
K

64 matches found

ICS
ICS
added 2025/11/25 7:0 a.m.8 views

Rockwell Automation Arena Simulation

RISK EVALUATION Successful exploitation of this vulnerability could allow local attackers to execute arbitrary code on affected installations of Arena. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:...

7.3CVSS7.5AI score0.00136EPSS
Exploits0References13
CNVD
CNVD
added 2025/11/18 12:0 a.m.4 views

Rockwell Automation Arena Stack Buffer Overflow Vulnerability

Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. Rockwell Automation Arena suffers from a stack buffer overflow vulnerability that originates when the program fails to properly validate the length and size of input data, which could be...

7.3CVSS6.3AI score0.00136EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/14 12:0 a.m.3 views

Rockwell Automation Arena 安全漏洞

Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. Rockwell Automation Arena suffers from a stack buffer overflow vulnerability that originates when the program fails to properly validate the length and size of input data, which could be...

7.3CVSS6.3AI score0.00136EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-4976

Malware in sbrugna...

7.8CVSS7.5AI score0.05571EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.8 views

Rockwell Automation Arena < 16.20.10 Multiple Vulnerabilities

The version of Rockwell Automation Arena installed on the remote Windows host is prior to 16.20.10. It is, therefore, affected by a multiple vulnerabilities - A memory abuse issue exists in the affected product. A custom file can force Arena Simulation to read and write past the end of memory...

8.4CVSS7.9AI score0.00261EPSS
Exploits0References4
CISA
CISA
added 2025/08/07 12:0 p.m.18 views

CISA Releases Ten Industrial Control Systems Advisories

CISA released ten Industrial Control Systems ICS advisories on August 7, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-219-01 Delta Electronics DIAView ICSA-25-219-02 Johnson Controls FX80 and FX90...

6.8AI score
Exploits0References10
ICS
ICS
added 2025/08/07 6:0 a.m.6 views

Rockwell Automation Arena

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose information and execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize...

8.4CVSS8AI score0.00261EPSS
Exploits0References10
NCSC
NCSC
added 2025/08/06 7:55 a.m.5 views

Vulnerabilities fixed in Rockwell Automation Arena

Rockwell Automation has fixed vulnerabilities in Arena Simulation. The vulnerabilities are in the way Arena Simulation processes files, with this it is possible to manipulate and read memory. The vulnerabilities allow malicious actors to reveal sensitive information and execute arbitrary code whe...

8.7CVSS7.5AI score0.00261EPSS
Exploits0References1
CNVD
CNVD
added 2025/07/21 12:0 a.m.2 views

Rockwell Automation Arena Code Execution Vulnerability (CNVD-2025-19255)

Rockwell Automation Arena is a discrete-event simulation software developed by Rockwell Automation for a wide range of manufacturing, logistics, and service industries. A code execution vulnerability exists in Rockwell Automation Arena, which is caused by out-of-bounds writes to specially crafted...

7.8CVSS8.1AI score0.00205EPSS
Exploits0References1
CNVD
CNVD
added 2025/07/21 12:0 a.m.2 views

Rockwell Automation Arena Code Execution Vulnerability

Rockwell Automation Arena is a discrete-event simulation software developed by Rockwell Automation for a wide range of manufacturing, logistics, and service industries. A code execution vulnerability exists in Rockwell Automation Arena, which is caused by out-of-bounds writes to specially crafted...

7.8CVSS8.1AI score0.00205EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/09 12:0 a.m.4 views

Rockwell Automation Arena 安全漏洞

Rockwell Automation Arena is a discrete-event simulation software developed by Rockwell Automation for a wide range of manufacturing, logistics, and service industries. A code execution vulnerability exists in Rockwell Automation Arena, which is caused by out-of-bounds writes to specially crafted...

7.8CVSS7.7AI score0.00205EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/09 12:0 a.m.7 views

PT-2025-28961 · Rockwell Automation · Rockwell Automation Arena

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Arena® affected versions not specified Description: A security issue allows for remote code execution in Rockwell Automation Arena®. A specially crafted DOE file can cause Arena Simulation to write beyond allocated object...

7.8CVSS7.6AI score0.00205EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 a.m.6 views

CVE-2019-13510

Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the application crashing or the execution of arbitrary code...

7.8CVSS7AI score0.12042EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/23 12:0 a.m.8 views

The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena lies in the ability to write code beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena lies in the writing beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created DOE file...

7.8CVSS6.2AI score0.00273EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2025/04/18 12:0 a.m.0 views

Rockwell Automation Arena Local Code Execution Vulnerability (CNVD-2025-21432)

Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...

8.5CVSS7.3AI score0.00273EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.2 views

Rockwell Automation Arena Local Code Execution Vulnerability

Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...

8.5CVSS7.3AI score0.00273EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.3 views

Rockwell Automation Arena Local Code Execution Vulnerability (CNVD-2025-21430)

Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...

8.5CVSS7.3AI score0.00273EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/04/16 12:0 a.m.9 views

Rockwell Automation Arena < 16.20.09 Multiple Vulnerabilities

The version of Rockwell Automation Arena installed on the remote Windows host is prior to 16.20.09. It is, therefore, affected by a multiple vulnerabilities - A local code execution vulnerability exists in the affected products due to an uninitialized pointer. The flaw is result of improper...

8.5CVSS7.3AI score0.00277EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2025/04/10 4:20 p.m.15 views

CVE-2025-3289

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a stack-based memory buffer overflow. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...

8.5CVSS7.5AI score0.00277EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/04/10 4:17 p.m.21 views

CVE-2025-3288

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...

8.5CVSS7.3AI score0.00273EPSS
Exploits0References3
Rows per page
Query Builder