VDB

CVE-2025-7025

CVE-2025-7025 PUBLISHED CVSS 7.800000190734863 HIGH

A memory abuse issue exists in the Rockwell Automation Arena® Simulation. A custom file can force Arena Simulation to read and write past the end of memory space. Successful use requires user action, such as opening a bad file or webpage. If used, a threat actor could execute code or disclose information.

EPSS 0.12% · 30.9th percentile

Risk Scores

CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.12%
30.9th percentile

Affected Products

VendorProductVersions
Rockwell AutomationArena® Simulation16.20.09 and prior
rockwellautomationarena0

Timeline

  • Aug 5, 2025 Coalition ESS Score
  • Aug 5, 2025 CVE Published
  • Aug 6, 2025 EPSS Score
  • Aug 7, 2025 Coalition ESS Score
  • Aug 7, 2025 PoC Published
  • Aug 15, 2025 EPSS Score
  • Aug 22, 2025 Coalition ESS Score
  • Aug 23, 2025 EPSS Score
  • Aug 26, 2025 Coalition ESS Score
  • Sep 1, 2025 EPSS Score
  • Sep 9, 2025 EPSS Score
  • Sep 18, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›