Описание
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap.
potentially resulting in a complete loss of confidentiality, integrity, and availability.
Ссылки
- Broken Link
- Third Party AdvisoryUS Government Resource
- Broken Link
Уязвимые конфигурации
Одно из
EPSS
7.8 High
CVSS3
8.8 High
CVSS3
Дефекты
Связанные уязвимости
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially resulting in a complete loss of confidentiality, integrity, and availability.
Уязвимость программного средства для моделирования и автоматизации дискретных событий Arena Simulation, связанная с возможностью переполнения буфера на основе кучи, позволяющая нарушителю выполнить произвольный код
EPSS
7.8 High
CVSS3
8.8 High
CVSS3