Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-22681

🗓️ 03 Mar 2021 17:59:43Reported by icscertType 
cvelist
 cvelist🔗 www.cve.org👁 28 Views

Rockwell Automation Studio 5000 Logix Designer and RSLogix 5000 Versions 21 and later vulnerable to authentication bypas

Related
Affected
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC		The vulnerabilities of microprogrammed software in programmable logic controllers such as CompactLogix 1768, CompactLogix 1769, CompactLogix 5370, CompactLogix 5380, CompactLogix 5480, ControlLogix 5550, ControlLogix 5560, ControlLogix 5570, ControlLogix 5580, DriveLogix 5560, DriveLogix 5730, DriveLogix 1794-L34, Compact GuardLogix 5370, Compact GuardLogix 5380, GuardLogix 5570, GuardLogix 5580, and SoftLogix 5800 stem from insufficient protection of registration data. This allows attackers to elevate their privileges and alter the configuration of vulnerable devices.
9 Mar 202100:00
bdu_fstec
Circl		CVE-2021-22681
4 Apr 202210:47
circl
CISA KEV Catalog		Rockwell Multiple Products Insufficient Protected Credentials Vulnerability
5 Mar 202600:00
cisa_kev
CISA		 CISA Adds Five Known Exploited Vulnerabilities to Catalog
5 Mar 202612:00
cisa
CNNVD		Rockwell Automation RSLogix 500 and Logix Designer Studio 5000 Security Vulnerability
25 Feb 202100:00
cnnvd
CVE		CVE-2021-22681
3 Mar 202117:59
cve
GithubExploit		InduGuard_vul_poc
19 Apr 202605:53
githubexploit
EUVD		EUVD-2021-9817
3 Oct 202520:07
euvd
ICS		Rockwell Automation Logix Controllers (Update A)
25 Feb 202100:00
ics
NCSC		Vulnerability found in Rockwell Automation Logix Controllers
26 Feb 202100:00
ncsc
Rows per page
[
  {
    "product": "Rockwell Automation Studio 5000 Logix Designer, RSLogix 5000, Logix Controllers",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "RSLogix 5000 Versions 16 through 20"
      },
      {
        "status": "affected",
        "version": "Studio 5000 Logix Designer: Versions 21 and later"
      },
      {
        "status": "affected",
        "version": "CompactLogix 1768, 1769, 5370, 5380, 5480"
      },
      {
        "status": "affected",
        "version": "ControlLogix 5550, 5560, 5570, 5580"
      },
      {
        "status": "affected",
        "version": "DriveLogix 5560, 5730, 1794-L34"
      },
      {
        "status": "affected",
        "version": "Compact GuardLogix 5370, 5380"
      },
      {
        "status": "affected",
        "version": "GuardLogix 5570, 5580"
      },
      {
        "status": "affected",
        "version": "SoftLogix 5800"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
03 Mar 2021 17:59Current
9.7High risk
Vulners AI Score9.7
EPSS0.25455
CWE-522
rockwell automationlogix designerrslogix 5000authentication bypassvulnerability
28