An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap.
potentially resulting in a complete loss of confidentiality, integrity, and availability.
References
Link | Resource |
---|---|
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1139391 | Permissions Required Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2023-05-09 14:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-29461
Mitre link : CVE-2023-29461
CVE.ORG link : CVE-2023-29461
JSON object : View
Products Affected
rockwellautomation
- arena_simulation
CWE
CWE-125
Out-of-bounds Read