Rockwellautomation Arena — known CVE vulnerabilities
Every CVE whose affected-product data names Rockwellautomation Arena, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (42)
CVE-2025-7033 — CVSS 7.8 (high): A memory abuse issue exists in the Rockwell Automation Arena® Simulation. A custom file can force Arena Simulation to read and write past…
CVE-2019-13510 — CVSS 7.8 (high): Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena…
CVE-2025-3286 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the…
CVE-2025-3287 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a stack-based memory buffer overflow. The flaw is…
CVE-2025-3288 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the…
CVE-2025-3289 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a stack-based memory buffer overflow. The flaw is…
CVE-2025-6376 — CVSS 7.8 (high): A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE file can force Arena Simulation to write…
CVE-2025-6377 — CVSS 7.8 (high): A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE file can force Arena Simulation to write…
CVE-2025-7025 — CVSS 7.8 (high): A memory abuse issue exists in the Rockwell Automation Arena® Simulation. A custom file can force Arena Simulation to read and write past…
CVE-2025-7032 — CVSS 7.8 (high): A memory abuse issue exists in the Rockwell Automation Arena® Simulation. A custom file can force Arena Simulation to read and write past…
CVE-2019-13519 — CVSS 7.8 (high): A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and…
CVE-2019-13521 — CVSS 7.8 (high): A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and…
CVE-2019-13527 — CVSS 7.8 (high): In Rockwell Automation Arena Simulation Software Cat. 9502-Ax, Versions 16.00.00 and earlier, a maliciously crafted Arena file opened by an…
CVE-2023-27854 — CVSS 7.8 (high): An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious…
CVE-2023-27858 — CVSS 7.8 (high): Rockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that could potentially allow a malicious user to…
CVE-2023-29460 — CVSS 7.8 (high): An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially…
CVE-2023-29461 — CVSS 7.8 (high): An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially…
CVE-2023-29462 — CVSS 7.8 (high): An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially…
CVE-2024-11155 — CVSS 7.8 (high): A “use after free” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a…
CVE-2024-11156 — CVSS 7.8 (high): An “out of bounds write” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to…
CVE-2024-12130 — CVSS 7.8 (high): An “out of bounds read” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft…
CVE-2024-12175 — CVSS 7.8 (high): Another “use after free” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to…
CVE-2024-21912 — CVSS 7.8 (high): An arbitrary code execution vulnerability in Rockwell Automation Arena Simulation could let a malicious user insert unauthorized code into…
CVE-2024-21913 — CVSS 7.8 (high): A heap-based memory buffer overflow vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user…
CVE-2024-21918 — CVSS 7.8 (high): A memory buffer vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert…
CVE-2024-21919 — CVSS 7.8 (high): An uninitialized pointer in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized…
CVE-2024-2929 — CVSS 7.8 (high): A memory corruption vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert…
CVE-2025-2285 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of…
CVE-2025-2286 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of…
CVE-2025-2287 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of…
CVE-2025-2288 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the…
CVE-2025-2293 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the…
CVE-2025-2829 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to write outside of the…
CVE-2025-3285 — CVSS 7.8 (high): A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the…
CVE-2024-11364 — CVSS 7.3 (high): Another “uninitialized variable” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor…
CVE-2024-12672 — CVSS 7.3 (high): A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of…
CVE-2025-11918 — CVSS 7.3 (high): Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE…
CVE-2024-11157 — CVSS 7.3 (high): A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of…
CVE-2024-11158 — CVSS 6.7 (medium): An “uninitialized variable” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to…
CVE-2018-8843 — CVSS 5.5 (medium): Rockwell Automation Arena versions 15.10.00 and prior contains a use after free vulnerability caused by processing specially crafted Arena…
CVE-2024-21920 — CVSS 4.4 (medium): A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory…
CVE-2019-13511 — CVSS 3.3 (low): Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted…