Lucene search

K
cve[email protected]CVE-2012-6442
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-6442

2022-10-0316:15:29
CWE-119
web.nvd.nist.gov
35
cve-2012-6442
rockwell automation
ethernet/ip
denial of service
nvd
security vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

Low

0.029 Low

EPSS

Percentile

90.9%

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and earlier; SoftLogix 18 and earlier; CompactLogix controllers 19 and earlier; SoftLogix controllers 19 and earlier; ControlLogix controllers 20 and earlier; GuardLogix controllers 20 and earlier; and MicroLogix 1100 and 1400 allow remote attackers to cause a denial of service (control and communication outage) via a CIP message that specifies a reset.

Affected configurations

NVD
Node
rockwellautomationethernet\/ip_firmwareMatch-
AND
rockwellautomation1756-enbtMatch-
OR
rockwellautomation1756-ewebMatch-
OR
rockwellautomation1768-enbtMatch-
OR
rockwellautomation1768-ewebMatch-
Node
rockwellautomationcompactlogix_firmwareMatch-
AND
rockwellautomationl32eMatch-
OR
rockwellautomationl35eMatch-
Node
rockwellautomationflexlogix_firmwareMatch-
AND
rockwellautomation1788-enbtMatch-
Node
rockwellautomationflex_i\/o_ethernet\/ip__firmwareMatch-
AND
rockwellautomation1794-aentrMatch-
Node
rockwellautomationmicrologix_firmwareMatch-
AND
rockwellautomation1100Match-
OR
rockwellautomation1400Match-
Node
rockwellautomationcompactlogix_controllers_firmwareMatch19
OR
rockwellautomationcompactlogix_firmwareMatch18
OR
rockwellautomationcontrollogix_controllers_firmwareMatch20
OR
rockwellautomationcontrollogix_firmwareMatch18
OR
rockwellautomationguardlogix_controllers_firmwareMatch20
OR
rockwellautomationguardlogix_firmwareMatch18
OR
rockwellautomationsoftlogix_controllers_firmwareMatch19
OR
rockwellautomationsoftlogix_firmwareMatch18

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

Low

0.029 Low

EPSS

Percentile

90.9%

Related for CVE-2012-6442