2 matches found
CVE-2025-6377
A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE file can force Arena Simulation to write beyond the boundaries of an allocated object. Exploitation requires user interaction, such as opening a malicious file within the software. If exploited, a threa...
CVE-2025-6377
Rockwell Automation Arena® has an input handling vulnerability where crafted DOE files can cause out-of-bounds writes, enabling remote code execution. Exploitation requires user interaction (opening a malicious file) and could execute arbitrary code in the administrator context, per the CVSS/ADRs...