Rockwellautomation

Arena

41 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-2829

  • EPSS 0.02%
  • Published 08.04.2025 15:24:34
  • Last modified 14.07.2025 19:13:44

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data.  If exploited a threat...

7.8

CVE-2025-2293

  • EPSS 0.02%
  • Published 08.04.2025 15:20:06
  • Last modified 14.07.2025 19:13:53

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data.  If exploited a threat...

7.8

CVE-2025-2288

  • EPSS 0.02%
  • Published 08.04.2025 15:19:30
  • Last modified 14.07.2025 19:14:05

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data.  If exploited a threat...

7.8

CVE-2025-2287

  • EPSS 0.02%
  • Published 08.04.2025 15:16:58
  • Last modified 14.07.2025 19:14:12

A local code execution vulnerability exists in the Rockwell Automation Arena®  due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitra...

7.8

CVE-2025-2286

  • EPSS 0.02%
  • Published 08.04.2025 15:16:00
  • Last modified 14.07.2025 19:13:59

A local code execution vulnerability exists in the Rockwell Automation Arena®  due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitra...

7.8

CVE-2025-2285

  • EPSS 0.02%
  • Published 08.04.2025 15:15:11
  • Last modified 14.07.2025 19:14:19

A local code execution vulnerability exists in the Rockwell Automation Arena®  due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitra...

7.3

CVE-2024-12672

  • EPSS 0.02%
  • Published 19.12.2024 21:15:07
  • Last modified 03.04.2025 16:36:30

A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of allocated memory in a DOE file. If exploited, a threat actor could leverage this vulnerability to execute arbitrary...

7.8

CVE-2024-12175

  • EPSS 0.02%
  • Published 19.12.2024 21:15:07
  • Last modified 13.03.2025 17:15:25

Another “use after free” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to use a resource that was already used. If exploited, a threat actor could leve...

7.3

CVE-2024-11364

  • EPSS 0.02%
  • Published 19.12.2024 21:15:07
  • Last modified 11.07.2025 20:03:34

Another “uninitialized variable” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to access a variable prior to it being initialized. If exploited, a thre...

7.3

CVE-2024-11157

  • EPSS 0.02%
  • Published 19.12.2024 21:15:07
  • Last modified 13.03.2025 16:15:15

A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of allocated memory in a DOE file. If exploited, a threat actor could leverage this vulnerability to execute arbitrary...