CVE-2024-12130: Rockwell Automation Arena® Out of Bounds Read Vulnerability
First published: Thu Dec 05 2024(Updated: )
An “out of bounds read” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to read beyond the boundaries of an allocated memory. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To exploit this vulnerability, a legitimate user must execute the malicious code crafted by the threat actor.
Credit: PSIRT@rockwellautomation.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rockwell Automation | <=16.20.03 |
Remedy
Corrected in v16.20.06 and later. Customers using the affected software are encouraged to apply these risk mitigations, if possible. For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested security best practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight to minimize the risk of the vulnerability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-12130?
CVE-2024-12130 is classified as a critical severity vulnerability due to its potential to allow code execution via an out of bounds read.
How do I fix CVE-2024-12130?
To remediate CVE-2024-12130, users should update Rockwell Automation Arena software to a version that addresses the vulnerability.
Who is affected by CVE-2024-12130?
CVE-2024-12130 affects users of Rockwell Automation Arena versions up to and including 16.20.03.
What exploit is associated with CVE-2024-12130?
CVE-2024-12130 can be exploited by a threat actor crafting a specially designed DOE file that causes the software to read beyond allocated memory boundaries.
What are the potential impacts of CVE-2024-12130?
Exploitation of CVE-2024-12130 could lead to unauthorized code execution, resulting in a compromise of system integrity and potential data breach.
- agent/title
- agent/remedy
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/author
- agent/event
- agent/severity
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/rockwellautomation
- canonical/rockwell automation
- version/rockwell automation/16.20.03