CVE-2024-6068
Input Validation Vulnerability exists in Arena® Input Analyzer
A memory corruption vulnerability exists in the affected products when parsing DFT files. Local threat actors can exploit this issue to disclose information and to execute arbitrary code. To exploit this vulnerability a legitimate user must open a malicious DFT file.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
Rockwell Automation · Arena Input Analyzer¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →