CVE-2019-13510
CVE-2019-13510
Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the application crashing or the execution of arbitrary code.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://www.us-cert.gov/ics/advisories/icsa-19-213-05https://www.zerodayinitiative.com/advisories/ZDI-19-1000/https://www.zerodayinitiative.com/advisories/ZDI-19-800/https://www.zerodayinitiative.com/advisories/ZDI-19-801/https://www.zerodayinitiative.com/advisories/ZDI-19-994/https://www.zerodayinitiative.com/advisories/ZDI-19-998/https://www.zerodayinitiative.com/advisories/ZDI-19-999/https://www.zerodayinitiative.com/advisories/ZDI-20-926/https://www.zerodayinitiative.com/advisories/ZDI-20-927/https://www.zerodayinitiative.com/advisories/ZDI-20-928/https://www.zerodayinitiative.com/advisories/ZDI-20-929/https://www.zerodayinitiative.com/advisories/ZDI-20-930/