CVE-2019-13519

A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation. Rockwell Automation has released version 16.00.01 of Arena...

CVE-2019-13521

The CVE-2019-13521 vulnerability affects Rockwell Automation Arena Simulation Software up to version 16.00.00. A maliciously crafted DOE/ Arena file opened by a user may cause limited exposure of information on the targeted workstation. Rockwell released Arena 16.00.01 to address the issue. The t...

CVE-2019-13521

A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation. Rockwell Automation has released version 16.00.01 of Arena...

CVE-2019-13527

In Rockwell Automation Arena Simulation Software Cat. 9502-Ax, Versions 16.00.00 and earlier, a maliciously crafted Arena file opened by an unsuspecting user may result in the use of a pointer that has not been initialized...

CVE-2019-13527

CVE-2019-13527 affects Rockwell Automation Arena Simulation Software Cat. 9502-Ax (versions 16.00.00 and earlier). The issue is a parsing flaw where a pointer is used without initialization when processing Arena DOE files, potentially enabling remote code execution. Exploitation typically require...

CVE-2019-13527

In Rockwell Automation Arena Simulation Software Cat. 9502-Ax, Versions 16.00.00 and earlier, a maliciously crafted Arena file opened by an unsuspecting user may result in the use of a pointer that has not been initialized...

CVE-2019-13510

Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the application crashing or the execution of arbitrary code...

Design/Logic Flaw

Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the limited exposure of information related to the targeted workstation...

CVE-2019-13510

CVE-2019-13510 affects Rockwell Automation Arena Simulation Software up to version 16.00.00. The connected sources indicate a USE AFTER FREE (CWE-416) in Arena files opened by a user, which can cause the application to crash or, in the worst case, execute arbitrary code. The vulnerability impact ...

CVE-2019-13511

CVE-2019-13511 affects Rockwell Automation Arena Simulation Software up to version 16.00.00. ZDI advisories describe use-after-free vulnerabilities in DOE file parsing (and related project file handling) that allow remote code execution when a user opens a malicious file or visits a malicious pag...

CVE-2019-13511

Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the limited exposure of information related to the targeted workstation...

Rockwell Automation Arena Simulation Software (Update B)

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Low skill level to exploit Vendor: Rockwell Automation Equipment: Arena Simulation Software --------- Begin Update B Part 1 of 2 --------- Vulnerabilities: Use After Free, Information Exposure, Type Confusion, Insufficient UI Warning of Dangerous...

Design/Logic Flaw

Rockwell Automation Arena versions 15.10.00 and prior contains a use after free vulnerability caused by processing specially crafted Arena Simulation Software files that may cause the software application to crash, potentially losing any unsaved data...

CVE-2018-8843

Rockwell Automation Arena versions 15.10.00 and prior contains a use after free vulnerability caused by processing specially crafted Arena Simulation Software files that may cause the software application to crash, potentially losing any unsaved data...

CVE-2018-8843

Rockwell Automation Arena versions 15.10.00 and prior contains a use after free vulnerability caused by processing specially crafted Arena Simulation Software files that may cause the software application to crash, potentially losing any unsaved data...

Cloud computing a core component of QEMU even explosion 1 0 pieces of high-risk vulnerabilities-vulnerability warning-the black bar safety net

Since 5 month so far,as cloud computing is an important underlying component of QEMU has been a continuous burst of 1 0 pieces of high-risk vulnerabilities,from the official website of the vulnerability Description,This 1 0 piece vulnerability, respectively, will cause comprises a“virtual machine...

Xiaodong Sheldon Meng (Quantum3D)

Meng was a 44 year-old software engineer living in Cupertino, California when, in 2008, he became the first person sentenced for a violation of the U.S.’s Economic Epionage Act of 1996. Meng had worked as an engineer for Quantum3D, a defense contractor that makes visual simulation software used f...