CVE-2023-27858

Rockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that could potentially allow a malicious user to commit unauthorized code to the software by using an uninitialized pointer in the application. The threat-actor could then execute malicious code on the system affecting the confidentiality, integrity, and availability of the product. The user would need to open a malicious file provided to them by the attacker for the code to execute.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145	Permissions Required Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:rockwellautomation:arena_simulation:*:*:*:*:*:*:*:*

History

07 Nov 2023, 18:07

Type	Values Removed	Values Added
References	~~(MISC) https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145 -~~	(MISC) https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145 - Permissions Required, Vendor Advisory
CWE		CWE-824
CPE		cpe:2.3:a:rockwellautomation:arena_simulation::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
First Time		Rockwellautomation arena Simulation Rockwellautomation

27 Oct 2023, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-27 19:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-27858

Mitre link : CVE-2023-27858

CVE.ORG link : CVE-2023-27858

JSON object : View

Products Affected

rockwellautomation

arena_simulation

CWE

CWE-824

Access of Uninitialized Pointer

{"id": "CVE-2023-27858", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "PSIRT@rockwellautomation.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2023-10-27T19:15:41.230", "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1141145", "tags": ["Permissions Required", "Vendor Advisory"], "source": "PSIRT@rockwellautomation.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-824"}]}, {"type": "Secondary", "source": "PSIRT@rockwellautomation.com", "description": [{"lang": "en", "value": "CWE-824"}]}], "descriptions": [{"lang": "en", "value": "\nRockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that could potentially allow a malicious user to commit unauthorized code to the software by using an\u00a0uninitialized pointer in the application. \u00a0The threat-actor could then execute malicious code on the system affecting the confidentiality, integrity, and availability of the product. \u00a0The user would need to open a malicious file provided to them by the attacker for the code to execute.\n\n"}, {"lang": "es", "value": "Rockwell Automation Arena Simulation contiene una vulnerabilidad de ejecuci\u00f3n de c\u00f3digo arbitrario que podr\u00eda permitir que un usuario malintencionado env\u00ede c\u00f3digo no autorizado al software mediante el uso de un puntero no inicializado en la aplicaci\u00f3n. El actor de la amenaza podr\u00eda entonces ejecutar c\u00f3digo malicioso en el sistema afectando la confidencialidad, integridad y disponibilidad del producto. El usuario necesitar\u00eda abrir un archivo malicioso proporcionado por el atacante para que se ejecute el c\u00f3digo."}], "lastModified": "2023-11-07T18:07:36.920", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rockwellautomation:arena_simulation:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AE2589A-AD92-4199-B117-B84E54C4F810", "versionEndExcluding": "16.20.02"}], "operator": "OR"}]}], "sourceIdentifier": "PSIRT@rockwellautomation.com"}