4301 matches found
Rockwell Automation Arena Local Code Execution Vulnerability (CNVD-2025-21429)
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
Rockwell Automation Arena Local Code Execution Vulnerability (CNVD-2025-21435)
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
Rockwell Automation Arena Local Code Execution Vulnerability (CNVD-2025-21430)
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
Rockwell Automation Arena < 16.20.09 Multiple Vulnerabilities
The version of Rockwell Automation Arena installed on the remote Windows host is prior to 16.20.09. It is, therefore, affected by a multiple vulnerabilities - A local code execution vulnerability exists in the affected products due to an uninitialized pointer. The flaw is result of improper...
Vulnerabilities fixed in Rockwell Automation Arena
Rockwell Automation has fixed vulnerabilities in Arena. The vulnerabilities in Rockwell Automation Arena are related to local code execution caused by improper validation of user-supplied data. This allows malicious actors to reveal sensitive information and execute arbitrary code when a legitima...
CVE-2025-27746
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-27750
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2025-3289
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a stack-based memory buffer overflow. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-3286
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...
CVE-2025-2286
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the vulnerabili...
CVE-2025-2288
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...
CVE-2025-2829
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...
SUSE CVE-2025-29481
Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...
CVE-2025-29823
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2025-29820
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2025-29820
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2025-29791
Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-29791
Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-27750
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2025-27752
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...