{"vulnerability": "CVE-2023-27854", "sightings": [{"uuid": "f9ea0d0c-0a63-4f93-ad35-622536307da2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27854", "type": "seen", "source": "https://t.me/cibsecurity/73071", "content": "\u203c CVE-2023-27854 \u203c\n\nAn arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. \u00c2\u00a0The threat-actor could then execute malicious code on the system affecting the confidentiality, integrity, and availability of the product. \u00c2\u00a0The user would need to open a malicious file provided to them by the attacker for the code to execute.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-27T22:17:18.000000Z"}]}