Описание
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap.
potentially resulting in a complete loss of confidentiality, integrity, and availability.
Ссылки
- Permissions RequiredVendor Advisory
- Permissions RequiredVendor Advisory
Уязвимые конфигурации
Одно из
EPSS
7.8 High
CVSS3
9.8 Critical
CVSS3
Дефекты
Связанные уязвимости
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially resulting in a complete loss of confidentiality, integrity, and availability.
Уязвимость программного обеспечения для дискретного моделирования событий и автоматизации Rockwell Automation Arena, связанная с возможностью чтения за границами буфера в памяти, позволяющая нарушителю выполнить произвольный код
EPSS
7.8 High
CVSS3
9.8 Critical
CVSS3