CVE-2024-21918

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 26, 2024

CWE ID 416

Summary

CVE-2024-21918 is a memory buffer vulnerability affecting Rockwell Automation Arena Simulation software. Malicious users can potentially exploit this issue by corrupting the memory, triggering an access violation, and inserting unauthorized code into the software. This allows them to run harmful code on the system, posing risks to the confidentiality, integrity, and availability of the product. Users are at risk of being compromised if they open a malicious file shared by the threat actor.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uA4gMk
https://www.cve.org/CVERecord?id=CVE-2024-21918
https://nvd.nist.gov/vuln/detail/CVE-2024-21918

Back to Vulnerability Database

CVE-2024-21918

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations