Security Advisory

CVE-2024-12672

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-19 20:58:29

Last updated 2024-12-20 17:14:12

Assigner Rockwell

State PUBLISHED

Description

A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of allocated memory in a DOE file. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To exploit this vulnerability, a legitimate user must execute the malicious code crafted by the threat actor.

← Browse all CVEs View on cve.org ↗