CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/04/08 4:15 p.m.•20 views

CVE-2025-2287

A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...

NVD•added 2025/04/08 4:15 p.m.•25 views

CVE-2025-2293

CVE•added 2025/04/08 3:34 p.m.•51 views

CVE-2025-3289

CVE-2025-3289 is a local code‑execution vulnerability in Rockwell Automation Arena caused by a stack‑based memory buffer overflow from improper validation of user‑supplied data. A legitimate user must open a malicious DOE file to exploit it, potentially allowing information disclosure and arbitra...

8.5CVSS7.7AI score0.00253EPSS

Vulnrichment•added 2025/04/08 3:30 p.m.•5 views

CVE-2025-3288 Local Code Execution Vulnerability in Arena®

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...

8.5CVSS7.5AI score0.00249EPSS

Cvelist•added 2025/04/08 3:30 p.m.•17 views

CVE-2025-3288 Local Code Execution Vulnerability in Arena®

Cvelist•added 2025/04/08 3:29 p.m.•27 views

CVE-2025-3287 Local Code Execution Vulnerability in Arena®

8.5CVSS0.00253EPSS

CVE•added 2025/04/08 3:24 p.m.•52 views

CVE-2025-2829

CVE-2025-2829 affects Rockwell Automation Arena. The vulnerability is a local code execution issue caused by improper validation of user-supplied data, allowing a threat actor to write outside the allocated memory buffer. To exploit, a legitimate user must open a malicious DOE file, potentially e...

Cvelist•added 2025/04/08 3:20 p.m.•30 views

CVE-2025-2293 Local Code Execution Vulnerability in Arena®

Vulnrichment•added 2025/04/08 3:19 p.m.•5 views

CVE-2025-2288 Local Code Execution Vulnerability in Arena®

CVE•added 2025/04/08 3:19 p.m.•49 views

CVE-2025-2288

CVE-2025-2288 describes a local code execution vulnerability in Rockwell Automation Arena. The issue arises from improper validation of user-supplied data which can allow a threat actor to write outside the allocated memory buffer, leading to information disclosure and arbitrary code execution. E...

Vulnrichment•added 2025/04/08 3:16 p.m.•9 views

CVE-2025-2287 Local Code Execution Vulnerability in Arena®

8.5CVSS7.3AI score0.00249EPSS

CVE•added 2025/04/08 3:16 p.m.•53 views

CVE-2025-2287

CVE-2025-2287 is a local code-execution vulnerability in Rockwell Automation Arena® caused by an uninitialized pointer resulting from improper validation of user-supplied data. A threat actor could disclose information and execute arbitrary code if a legitimate user opens a malicious DOE file. Ex...

Vulnrichment•added 2025/04/08 3:15 p.m.•6 views

CVE-2025-2285 Local Code Execution Vulnerability in Arena®

8.5CVSS7.6AI score0.00247EPSS

8.5CVSS7.4AI score0.00249EPSS

Rockwell Automation Arena 安全漏洞

Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...

Exploits0References2

8.5CVSS7.4AI score0.00249EPSS

Rockwell Automation Arena 安全漏洞

Exploits0References2

8.5CVSS7.4AI score0.00247EPSS

Rockwell Automation Arena 安全漏洞

Exploits0References2