Vulnerability in Rockwell Automation Arena Simulation Software

CVE-2019-13519

A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation. Rockwell…

EPSS: 0.000 (14.6th percentile) — read the EPSS interpretation.

Affected products

Rockwell Automation Arena Simulation Software — versions Versions 16.00.00 and earlier

Weakness classification (CWE)

CWE-843 — Access of Resource Using Incompatible Type (Type Confusion)

References

www.us-cert.gov/ics/advisories/icsa-19-213-05 (x_refsource_MISC)
www.zerodayinitiative.com/advisories/ZDI-19-802/ (x_refsource_MISC)