CVE-2024-21918

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 26, 2024

Updated: Dec 17, 2024

CWE ID 416

Summary

CVE-2024-21918 is a memory buffer vulnerability in Rockwell Automation Arena Simulation software. By corrupting the memory and triggering an access violation, a malicious user can potentially insert unauthorized code into the software. Once inside, the threat actor can execute harmful code on the system, compromising the confidentiality, integrity, and availability of the product. The user would unwittingly need to open a malicious file to trigger this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Rockwell Automation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uA4gMk
https://www.cve.org/CVERecord?id=CVE-2024-21918
https://nvd.nist.gov/vuln/detail/CVE-2024-21918

Back to Vulnerability Database

CVE-2024-21918

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations