PT-2024-9188 · Rockwell Automation · Rockwell Automation Arena
Published
2024-12-05
·
Updated
2024-12-10
·
CVE-2024-11155
CVSS v4.0
8.5
High
| Vector | AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
Rockwell Automation Arena versions prior to 16.20.00
Description:
A "use after free" code execution issue exists in the Rockwell Automation Arena that could allow a threat actor to craft a DOE file and force the software to use a resource that was already used. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To exploit this vulnerability, a legitimate user must execute the malicious code crafted by the threat actor.
Recommendations:
For versions prior to 16.20.00, patch the software immediately to prevent potential remote code execution. As a temporary workaround, consider restricting the use of DOE files from untrusted sources until a patch is applied. Monitor for exploits and apply the patch as soon as possible to minimize the risk of exploitation. At the moment, there is no additional information about other mitigation measures.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rockwell Automation Arena