CVE-2024-11158: Rockwell Automation Arena® Uninitialized Vulnerability
First published: Thu Dec 05 2024(Updated: )
An “uninitialized variable” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to access a variable before it being initialized. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To exploit this vulnerability, a legitimate user must execute the malicious code crafted by the threat actor.
Credit: PSIRT@rockwellautomation.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rockwell Automation Arena | ||
| Rockwell Automation | <=16.20.00 |
Remedy
Corrected in software version 16.20.06 and later Mitigations and Workarounds Customers using the affected software are encouraged to apply these risk mitigations, if possible. For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested security best practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight to minimize the risk of the vulnerability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-11158?
CVE-2024-11158 is classified as a code execution vulnerability, which can allow unauthorized access and potential control of the affected system.
How do I fix CVE-2024-11158?
To fix CVE-2024-11158, ensure you are running the latest version of Rockwell Automation Arena and apply any patches provided by the vendor.
What systems are affected by CVE-2024-11158?
CVE-2024-11158 affects the Rockwell Automation Arena software.
What can attackers do by exploiting CVE-2024-11158?
Exploiting CVE-2024-11158 allows attackers to execute arbitrary code by forcing the software to access an uninitialized variable.
When was CVE-2024-11158 disclosed?
CVE-2024-11158 was disclosed recently and details can be found in the related security advisories by Rockwell Automation.
- agent/remedy
- agent/weakness
- agent/title
- agent/references
- agent/type
- agent/first-publish-date
- agent/description
- agent/author
- agent/event
- agent/severity
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/guess-ai
- agent/software-canonical-lookup
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- vendor/rockwell automation
- canonical/rockwell automation arena
- vendor/rockwellautomation
- canonical/rockwell automation
- version/rockwell automation/16.20.00