Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2020-6998

🗓️ 27 Jul 2022 20:18:00Reported by icscertType 
cve
 cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 101 Views

The connection establishment algorithm in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior creates an infinite loop, allowing denial-of-service via specially crafted CIP packet requests

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
BDU FSTEC		The vulnerability of microprogrammed software in programmable logic controllers such as CompactLogix 5370 L1, CompactLogix 5370 L2, CompactLogix 5370 L3, Compact GuardLogix 5370, ControlLogix 5570, and GuardLogix 5370, related to the execution of a loop with an unavailable exit condition, allows a intruder to cause a service failure.
30 Mar 202100:00
bdu_fstec
Circl		CVE-2020-6998
28 Jul 202200:36
circl
CNNVD		Rockwell Automation CompactLogix 5370 输入验证错误漏洞
2 Mar 202100:00
cnnvd
Cvelist		CVE-2020-6998 Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers Improper Input Validation
27 Jul 202220:18
cvelist
EUVD		EUVD-2020-28138
7 Oct 202500:30
euvd
ICS		Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers (Update A)
2 Mar 202100:00
ics
NVD		CVE-2020-6998
27 Jul 202221:15
nvd
OSV		CVE-2020-6998
27 Jul 202221:15
osv
Prion		Buffer overflow
27 Jul 202221:15
prion
Positive Technologies		PT-2021-2365 · Rockwell Automation · Guardlogix 5370 +7
2 Mar 202100:00
ptsecurity
Rows per page
NVD
Vulners
Node
rockwellautomationarmor_compact_guardlogix_5370_firmwareRange33
AND
rockwellautomationarmor_compact_guardlogix_5370Match-
Node
rockwellautomationcompact_guardlogix_5370_firmwareRange33
AND
rockwellautomationcompact_guardlogix_5370Match-
Node
rockwellautomationcompactlogix_5370_l1_firmwareRange33
AND
rockwellautomationcompactlogix_5370_l1Match-
Node
rockwellautomationcompactlogix_5370_l2_firmwareRange33
AND
rockwellautomationcompactlogix_5370_l2Match-
Node
rockwellautomationcompactlogix_5370_l3_firmwareRange33
AND
rockwellautomationcompactlogix_5370_l3Match-
Node
rockwellautomationcontrollogix_5570_firmwareRange33
AND
rockwellautomationcontrollogix_5570Match-
Node
rockwellautomationguardlogix_5560_firmwareRange33
AND
rockwellautomationguardlogix_5560Match-
Node
rockwellautomationguardlogix_5570_firmwareRange33
AND
rockwellautomationguardlogix_5570Match-
Node
rockwellautomationguardlogix_5580_firmwareRange33
AND
rockwellautomationguardlogix_5580Match-
[
  {
    "product": "Armor Compact GuardLogix 5370 controllers",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThanOrEqual": "versions 33 and prior",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Armor GuardLogix Safety Controllers",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThanOrEqual": "versions 33 and prior",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "CompactLogix 5370 L1 controllers",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThanOrEqual": "versions 33 and prior",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "CompactLogix 5370 L2 controllers",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThanOrEqual": "versions 33 and prior",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "CompactLogix 5370 L3 controllers",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThanOrEqual": "versions 33 and prior",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Compact GuardLogix 5370 controllers",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThanOrEqual": "versions 33 and prior",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "ControlLogix 5570 controllers",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThanOrEqual": "versions 33 and prior",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 03:24Current
6.8Medium risk
Vulners AI Score6.8
CVSS 3.15.8 - 8.6
EPSS0.0174
SSVC
CWE-20
cve-2020-6998rockwell automationcompactlogix 5370controllogix 5570denial of servicecip packetnvd
101