Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the application crashing or the execution of arbitrary code.
References
Configurations
History
21 Nov 2024, 04:25
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.us-cert.gov/ics/advisories/icsa-19-213-05 - Mitigation, Third Party Advisory, US Government Resource | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-19-1000/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-19-800/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-19-801/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-19-994/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-19-998/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-19-999/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-20-926/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-20-927/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-20-928/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-20-929/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-20-930/ - | |
References | () https://www.zerodayinitiative.com/advisories/ZDI-20-931/ - |
Information
Published : 2019-08-15 19:15
Updated : 2024-11-21 04:25
NVD link : CVE-2019-13510
Mitre link : CVE-2019-13510
CVE.ORG link : CVE-2019-13510
JSON object : View
Products Affected
rockwellautomation
- arena_simulation_software
CWE
CWE-416
Use After Free