VDB
CVE-2025-7025
CVE-2025-7025
PUBLISHED
CVSS 7.800000190734863 HIGH
A memory abuse issue exists in the Rockwell Automation Arena® Simulation. A custom file can force Arena Simulation to read and write past the end of memory space. Successful use requires user action, such as opening a bad file or webpage. If used, a threat actor could execute code or disclose information.
EPSS 0.12% · 30.9th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.12%
30.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rockwell Automation | Arena® Simulation | 16.20.09 and prior |
| rockwellautomation | arena | 0 |
Timeline
- Aug 5, 2025 Coalition ESS Score
- Aug 5, 2025 CVE Published
- Aug 6, 2025 EPSS Score
- Aug 7, 2025 Coalition ESS Score
- Aug 7, 2025 PoC Published
- Aug 15, 2025 EPSS Score
- Aug 22, 2025 Coalition ESS Score
- Aug 23, 2025 EPSS Score
- Aug 26, 2025 Coalition ESS Score
- Sep 1, 2025 EPSS Score
- Sep 9, 2025 EPSS Score
- Sep 18, 2025 EPSS Score