Vulnerabilities > Rockwellautomation > Arena
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-26 | CVE-2024-2929 | Out-of-bounds Write vulnerability in Rockwellautomation Arena A memory corruption vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code to the software by corrupting the memory triggering an access violation. | 7.8 |
| 2023-10-27 | CVE-2023-27854 | Out-of-bounds Read vulnerability in Rockwellautomation Arena An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. | 7.8 |
| 2023-10-27 | CVE-2023-27858 | Access of Uninitialized Pointer vulnerability in Rockwellautomation Arena Rockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that could potentially allow a malicious user to commit unauthorized code to the software by using an uninitialized pointer in the application. | 7.8 |
| 2023-05-09 | CVE-2023-29460 | Out-of-bounds Read vulnerability in Rockwellautomation Arena 16.00.00/16.20.00 An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow potentially resulting in a complete loss of confidentiality, integrity, and availability. | 9.8 |
| 2023-05-09 | CVE-2023-29461 | Out-of-bounds Read vulnerability in Rockwellautomation Arena 16.00.00/16.20.00 An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. | 9.8 |
| 2023-05-09 | CVE-2023-29462 | Out-of-bounds Write vulnerability in Rockwellautomation Arena 16.00.00/16.20.01 An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. | 8.8 |
| 2020-01-27 | CVE-2019-13521 | Unspecified vulnerability in Rockwellautomation Arena A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation. | 7.8 |
| 2020-01-27 | CVE-2019-13519 | Type Confusion vulnerability in Rockwellautomation Arena A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation. | 7.8 |
| 2019-09-24 | CVE-2019-13527 | Access of Uninitialized Pointer vulnerability in Rockwellautomation Arena In Rockwell Automation Arena Simulation Software Cat. | 7.8 |
| 2019-08-15 | CVE-2019-13511 | Use After Free vulnerability in Rockwellautomation Arena Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. | 3.3 |