Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the limited exposure of information related to the targeted workstation.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-19-213-05 | Mitigation Third Party Advisory US Government Resource |
https://www.zerodayinitiative.com/advisories/ZDI-20-810/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-811/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-812/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-813/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-814/ | Third Party Advisory VDB Entry |
Configurations
History
28 Oct 2021, 15:11
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-20-812/ - Third Party Advisory, VDB Entry | |
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-20-814/ - Third Party Advisory, VDB Entry | |
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-20-811/ - Third Party Advisory, VDB Entry | |
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-20-810/ - Third Party Advisory, VDB Entry | |
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-20-813/ - Third Party Advisory, VDB Entry | |
CWE | CWE-416 |
Information
Published : 2019-08-15 19:15
Updated : 2024-02-04 20:20
NVD link : CVE-2019-13511
Mitre link : CVE-2019-13511
CVE.ORG link : CVE-2019-13511
JSON object : View
Products Affected
rockwellautomation
- arena_simulation_software