Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rockwell Automation Arena® Use After Free Vulnerability
Vulnerability Description
A “use after free” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to use a resource that was already used. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To exploit this vulnerability, a legitimate user must execute the malicious code crafted by the threat actor.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
Rockwell Automation Arena 安全漏洞
Vulnerability Description
Rockwell Automation Arena是美国罗克韦尔(Rockwell Automation)公司的一款离散事件模拟和自动化软件。 Rockwell Automation Arena 16.20.00及之前版本存在安全漏洞,该漏洞源于存在释放后重用漏洞,允许威胁行为者制作DOE文件并强制软件使用已使用的资源。
CVSS Information
N/A
Vulnerability Type
N/A