CVE-2023-2262 Rockwell Automation Select Logix Communication Modules Vulnerable to Email Object Buffer Overflow

🗓️ 20 Sep 2023 15:20:23Reported by RockwellType

Rockwell Automation 1756-EN* Communication Devices Buffer Overflow Vulnerability

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2023-2262	20 Sep 202320:30	–	circl
CNNVD	Rockwell Automation select 1756-EN* Buffer Error Vulnerability	20 Sep 202300:00	–	cnnvd
CVE	CVE-2023-2262	20 Sep 202315:20	–	cve
EUVD	EUVD-2023-33768	3 Oct 202520:07	–	euvd
ICS	Rockwell Automation Select Logix Communication Modules	21 Sep 202306:00	–	ics
NVD	CVE-2023-2262	20 Sep 202316:15	–	nvd
OSV	CVE-2023-2262	20 Sep 202316:15	–	osv
Prion	Buffer overflow	20 Sep 202316:15	–	prion
Positive Technologies	PT-2023-18590 · Rockwell Automation · 1756-En*	20 Sep 202300:00	–	ptsecurity
Tenable Nessus	Rockwell Automation Select Logix Communication Modules Stack-Based Buffer Overflow (CVE-2023-2262)	22 Sep 202300:00	–	nessus

[
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2T Series A, B, C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2T Series D",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TK Series A, B, C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TXT Series A, B, C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TXT Series D",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TP Series A",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TPK Series A",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TPXT Series A",
    "vendor": "Rockwell Auotmation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TR Series A, B",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TR Series C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TRK Series A, B",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TRK Series C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TRXT Series A, B",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2TRXT Series C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2F Series A, B",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2F Series C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2FK Series A, B",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN2FK Series C",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN3TR Series A",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN3TR Series B",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.003"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN3TRK Series A",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=5.008 & 5.028"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "1756-EN3TRK Series B",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "<=11.002"
      }
    ]
  }
]

Source	Link
rockwellautomation	www.rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140786

20 Sep 2023 15:47Current

10High risk

Vulners AI Score10

CVSS 3.19.8

EPSS0.00977

CWE-121

rockwell automation 1756-en*communication devices buffer overflow vulnerability remote code execution cip request