Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rockwell Automation Arena® Uninitialized Vulnerability
Vulnerability Description
An “uninitialized variable” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to access a variable before it being initialized. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To exploit this vulnerability, a legitimate user must execute the malicious code crafted by the threat actor.
CVSS Information
N/A
Vulnerability Type
初始化不恰当
Vulnerability Title
Rockwell Automation Arena 安全漏洞
Vulnerability Description
Rockwell Automation Arena是美国罗克韦尔(Rockwell Automation)公司的一款离散事件模拟和自动化软件。 Rockwell Automation Arena 16.20.00及之前版本存在安全漏洞,该漏洞源于存在未初始化变量代码执行漏洞,允许威胁参与者制作DOE文件并强制软件在变量初始化之前访问变量。
CVSS Information
N/A
Vulnerability Type
N/A