CVE-2021-22681

2021-03-0317:59:43

CWE-522

icscert

www.cve.org

9.7 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.6%

JSON

Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are communicating with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730, 1794-L34; Compact GuardLogix 5370, 5380; GuardLogix 5570, 5580; SoftLogix 5800. Rockwell Automation Studio 5000 Logix Designer Versions 21 and later and RSLogix 5000: Versions 16 through 20 are vulnerable because an unauthenticated attacker could bypass this verification mechanism and authenticate with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730, 1794-L34; Compact GuardLogix 5370, 5380; GuardLogix 5570, 5580; SoftLogix 5800.

CNA Affected

[
  {
    "product": "Rockwell Automation Studio 5000 Logix Designer, RSLogix 5000, Logix Controllers",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "RSLogix 5000 Versions 16 through 20"
      },
      {
        "status": "affected",
        "version": "Studio 5000 Logix Designer: Versions 21 and later"
      },
      {
        "status": "affected",
        "version": "CompactLogix 1768, 1769, 5370, 5380, 5480"
      },
      {
        "status": "affected",
        "version": "ControlLogix 5550, 5560, 5570, 5580"
      },
      {
        "status": "affected",
        "version": "DriveLogix 5560, 5730, 1794-L34"
      },
      {
        "status": "affected",
        "version": "Compact GuardLogix 5370, 5380"
      },
      {
        "status": "affected",
        "version": "GuardLogix 5570, 5580"
      },
      {
        "status": "affected",
        "version": "SoftLogix 5800"
      }
    ]
  }
]

References

us-cert.cisa.gov/ics/advisories/icsa-21-056-03