CVE-2024-6079

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Emulate3D version 17.00.00.13276

Description: A vulnerability exists in the Rockwell Automation Emulate3D, which could be leveraged to execute a DLL Hijacking attack. The application loads shared libraries, which are readable and writable by any user. If exploited, a malicious user could leverage a malicious dll and perform a remote code execution attack. The issue is related to incorrect external control of the name or path of a .dll file when loading libraries.

Recommendations: For Rockwell Automation Emulate3D version 17.00.00.13276, patch immediately to prevent potential system compromise. Monitor for signs of exploit and consider restricting access to shared libraries to minimize the risk of exploitation. As a temporary workaround, consider disabling the loading of shared libraries until a patch is available.