CVE-2025-2285 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of use…

High CVSS: 8.5

CVE-2025-2285

A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the vulnerability a legitimate user must open a malicious DOE file.

Vendor

Rockwellautomation

Product

CWE

Yayın Tarihi

2025-04-08 16:15:26

Güncelleme

2025-07-14 19:14:19

Source Identifier

PSIRT@rockwellautomation.com

KEV Date Added

-

Kategoriler

CWE-457 Arena HIGH Rockwellautomation 2025

Referanslar

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1726.html

Benzer Kayıtlar

High

CVE-2025-9466

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the…

High

CVE-2025-9465

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the…

High

CVE-2025-9464

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. This vulnerability is tr…

High

CVE-2025-9283

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the…

High

CVE-2025-9282

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the…

High

CVE-2025-9281

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the…