Vulnerabilities > Rockwellautomation > Arena > 16.20.03

DATE CVE VULNERABILITY TITLE RISK
2024-12-19 CVE-2024-11157 Out-of-bounds Write vulnerability in Rockwellautomation Arena
A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of allocated memory in a DOE file.
local
low complexity
rockwellautomation CWE-787
7.3
2024-12-19 CVE-2024-12175 Use After Free vulnerability in Rockwellautomation Arena
Another “use after free” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to use a resource that was already used.
local
low complexity
rockwellautomation CWE-416
7.8
2024-12-05 CVE-2024-11156 Out-of-bounds Write vulnerability in Rockwellautomation Arena
An “out of bounds write” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of allocated memory in a DOE file.
local
low complexity
rockwellautomation CWE-787
7.8
2024-12-05 CVE-2024-12130 Out-of-bounds Read vulnerability in Rockwellautomation Arena
An “out of bounds read” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to read beyond the boundaries of an allocated memory.
local
low complexity
rockwellautomation CWE-125
7.8
2024-03-26 CVE-2024-21920 Out-of-bounds Read vulnerability in Rockwellautomation Arena
A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries.
local
low complexity
rockwellautomation CWE-125
7.1
2020-01-27 CVE-2019-13521 Unspecified vulnerability in Rockwellautomation Arena
A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation.
local
low complexity
rockwellautomation
7.8
2020-01-27 CVE-2019-13519 Type Confusion vulnerability in Rockwellautomation Arena
A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation.
local
low complexity
rockwellautomation CWE-843
7.8
2019-09-24 CVE-2019-13527 Access of Uninitialized Pointer vulnerability in Rockwellautomation Arena
In Rockwell Automation Arena Simulation Software Cat.
local
low complexity
rockwellautomation CWE-824
7.8
2019-08-15 CVE-2019-13511 Use After Free vulnerability in Rockwellautomation Arena
Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200.
local
low complexity
rockwellautomation CWE-416
3.3
2019-08-15 CVE-2019-13510 Use After Free vulnerability in Rockwellautomation Arena
Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416.
local
low complexity
rockwellautomation CWE-416
7.8