VDB

CVE-2025-7033

CVE-2025-7033 PUBLISHED CVSS 8.399999618530273 HIGH

A memory abuse issue exists in the Rockwell Automation Arena® Simulation. A custom file can force Arena Simulation to read and write past the end of memory space. Successful use requires user action, such as opening a bad file or webpage. If used, a threat actor could execute code or disclose information.

EPSS 0.12% · 30.9th percentile

Risk Scores

CVSS 4.0
8.399999618530273
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.12%
30.9th percentile

Affected Products

VendorProductVersions
rockwellautomationarena0
Rockwell AutomationArena® Simulation16.20.09 and prior

Timeline

  • Aug 5, 2025 Coalition ESS Score
  • Aug 5, 2025 CVE Published
  • Aug 6, 2025 EPSS Score
  • Aug 7, 2025 Coalition ESS Score
  • Aug 7, 2025 PoC Published
  • Aug 15, 2025 EPSS Score
  • Aug 22, 2025 Coalition ESS Score
  • Aug 23, 2025 EPSS Score
  • Aug 26, 2025 Coalition ESS Score
  • Sep 1, 2025 EPSS Score
  • Sep 9, 2025 EPSS Score
  • Sep 18, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›