CVE-2025-2293 Local Code Execution Vulnerability in Arena®

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...

CVE-2025-2288 Local Code Execution Vulnerability in Arena®

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...

CVE-2025-2288 Local Code Execution Vulnerability in Arena®

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...

CVE-2025-2288

CVE-2025-2288 describes a local code execution vulnerability in Rockwell Automation Arena. The issue arises from improper validation of user-supplied data which can allow a threat actor to write outside the allocated memory buffer, leading to information disclosure and arbitrary code execution. E...

PT-2025-15458 · Rockwell Automation · Rockwell Automation Arena

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Arena affected versions not specified Description: A local code execution issue exists due to a threat actor being able to read outside of the allocated memory buffer. This is a result of improper validation of user-suppli...

CVE-2025-0050

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to make valid GPU processing operations,...

CVE-2025-0050

Arm Mali GPU drivers (Bifrost, Valhall, and Arm 5th Gen) expose CVE-2025-0050: Improper memory buffer bound checks allow a non-privileged process to perform GPU operations (including via WebGL/WebGPU) outside of buffer bounds. Affected: Bifrost userspace driver r0p0–r49p2 and r50p0–r51p0; Valhall...

PT-2025-15449 · Rockwell Automation · Rockwell Automation Arena

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Arena affected versions not specified Description: A local code execution issue exists due to a threat actor being able to write outside of the allocated memory buffer. This is a result of improper validation of...

The vulnerability of the SIEM system testing tool Kraken Stress Testing Toolkit lies in the reading beyond the buffer in memory, allowing a malicious actor to trigger a service failure.

The vulnerability of the SIEM systems’ load testing tools, such as the Kraken Stress Testing Toolkit, lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

PT-2025-15450 · Rockwell Automation · Rockwell Automation Arena

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Arena affected versions not specified Description: A local code execution issue exists due to a threat actor being able to write outside of the allocated memory buffer, resulting from improper validation of user-supplied...

Vulnerability of software for modeling, design, and drawing in AutoCAD, related to reading data outside the buffer in memory, allowing a perpetrator to cause service failures and gain unauthorized access to protected information

The vulnerability of software for modeling, design, and drawing in AutoCAD is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause system failures and gain unauthorized access to protected information using a specially create...

The vulnerability of the xe_device_probe() function in the DRI driver allows a hacker to induce a service failure.

The vulnerability of the xedeviceprobe function in the DRI driver is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the IBM Common Cryptographic Architecture (CCA) lies in the writing beyond the buffer boundaries in memory, which allows a attacker to trigger a failure in the operation of the Hardware Security Module (HSM).

The vulnerability of the IBM Common Cryptographic Architecture CCA lies in the writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause a failure in the Hardware Security Module HSM’s security hardware module by usin...

The vulnerability of the ethnl_set_channels() function in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the ethnlsetchannels function in the Linux operating system’s kernel is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of Adobe Illustrator’s graphic editor lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious file...

The vulnerability of the check_dws_cookie() function in the wireless repeater software of D-Link DAP-1620 allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the checkdwscookie function in the wireless repeater software developed by D-Link DAP-1620 lies in the fact that the operation’s output escapes the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause a service failu...

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models allows attackers to execute arbitrary code. This vulnerability stems from buffer overflows in the dynamic memory, enabling attackers to exploit the system.

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability of the perf_event_cpu_offline() function in the drivers/dma/idxd/perfmon.c kernel module of the Linux operating system, which allows a hacker to trigger a service failure

The vulnerability of the perfeventcpuoffline function in the drivers/dma/idxd/perfmon.c kernel module of the Linux operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the routing protocol BGP implementation in Cisco IOS XR allows a attacker to cause a service failure.

The vulnerability of the BGP routing protocol implementation in Cisco IOS XR operating systems lies in the fact that the operation data is written outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted BGP reques...

The vulnerability of the Substance 3D Painter software for creating textures and materials for 3D models allows a hacker to execute arbitrary code by reading data beyond the buffer in memory.

The vulnerability of the Substance 3D Painter software for creating textures and materials for 3D models involves reading data beyond the buffer limit in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code using a specially created malicious file...