{"uuid": "ff9645a2-56ff-44fe-a63f-7b52250d054b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27858", "type": "seen", "source": "https://t.me/cibsecurity/73077", "content": "\u203c CVE-2023-27858 \u203c\n\nRockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that could potentially allow a malicious user to commit unauthorized code to the software by using an\u00c2\u00a0uninitialized pointer in the application. \u00c2\u00a0The threat-actor could then execute malicious code on the system affecting the confidentiality, integrity, and availability of the product. \u00c2\u00a0The user would need to open a malicious file provided to them by the attacker for the code to execute.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-27T22:17:24.000000Z"}