CVE-2023-27854

An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. The threat-actor could then execute malicious code on the system affecting the confidentiality, integrity, and availability of the product. The user would need to open a malicious file provided to them by the attacker for the code to execute.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145	Permissions Required Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:rockwellautomation:arena_simulation:*:*:*:*:*:*:*:*

History

07 Nov 2023, 18:02

Type	Values Removed	Values Added
First Time		Rockwellautomation arena Simulation Rockwellautomation
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
References	~~(MISC) https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145 -~~	(MISC) https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145 - Permissions Required, Vendor Advisory
CWE		CWE-125
CPE		cpe:2.3:a:rockwellautomation:arena_simulation::::::::

27 Oct 2023, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-27 19:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-27854

Mitre link : CVE-2023-27854

CVE.ORG link : CVE-2023-27854

JSON object : View

Products Affected

rockwellautomation

arena_simulation

CWE

CWE-125

Out-of-bounds Read

{"id": "CVE-2023-27854", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "PSIRT@rockwellautomation.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2023-10-27T19:15:41.157", "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145", "tags": ["Permissions Required", "Vendor Advisory"], "source": "PSIRT@rockwellautomation.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-125"}]}, {"type": "Secondary", "source": "PSIRT@rockwellautomation.com", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "\nAn arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. \u00a0The threat-actor could then execute malicious code on the system affecting the confidentiality, integrity, and availability of the product. \u00a0The user would need to open a malicious file provided to them by the attacker for the code to execute.\n\n\n"}, {"lang": "es", "value": "Se inform\u00f3 a Rockwell Automation en Arena Simulation de una vulnerabilidad de ejecuci\u00f3n de c\u00f3digo arbitrario que potencialmente podr\u00eda permitir que un usuario malintencionado env\u00ede c\u00f3digo arbitrario no autorizado al software mediante el uso de un desbordamiento del b\u00fafer de memoria. El actor de la amenaza podr\u00eda entonces ejecutar c\u00f3digo malicioso en el sistema afectando la confidencialidad, integridad y disponibilidad del producto. El usuario necesitar\u00eda abrir un archivo malicioso proporcionado por el atacante para que se ejecute el c\u00f3digo."}], "lastModified": "2023-11-07T18:02:17.187", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rockwellautomation:arena_simulation:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AE2589A-AD92-4199-B117-B84E54C4F810", "versionEndExcluding": "16.20.02"}], "operator": "OR"}]}], "sourceIdentifier": "PSIRT@rockwellautomation.com"}