EUVD-2024-27377

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Denial-of-service vulnerability in Rockwell Automation PowerFlex 527 requires manual restart if exploited

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of the microprogrammed software of the PowerFlex 527 variable frequency converter, related to insufficient verification of input data, allows a intruder to trigger a service failure.	1 Apr 202400:00	–	bdu_fstec
CNNVD	Rockwell Automation PowerFlex 安全漏洞	25 Mar 202400:00	–	cnnvd
CNVD	Rockwell Automation PowerFlex 527 Input Validation Error Vulnerability	27 Mar 202400:00	–	cnvd
CVE	CVE-2024-2426	25 Mar 202420:17	–	cve
Cvelist	CVE-2024-2426 Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527	25 Mar 202420:17	–	cvelist
ICS	Rockwell Automation PowerFlex 527	26 Mar 202406:00	–	ics
NVD	CVE-2024-2426	25 Mar 202421:15	–	nvd
Positive Technologies	PT-2024-2448 · Rockwell Automation · Powerflex 527	21 Mar 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-2426 Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527	25 Mar 202420:17	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "4da0043f-638d-3023-bebd-e7de4e6676d0",
        "vendor": {
          "name": "Rockwell Automation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "35b5730e-7ab6-378b-b866-d1725acc6b08",
        "product": {
          "name": "PowerFlex® 527"
        }
      },
      {
        "id": "c342d023-fa8d-3b01-87dc-f66c6f2253dd",
        "product": {
          "name": "PowerFlex® 527"
        },
        "product_version": "v2.001.x <"
      }
    ]
  }
]

Source	Link
rockwellautomation	www.rockwellautomation.com/en-us/support/advisory.SD1664.html

03 Oct 2025 20:07Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.5

EPSS0.00208

SSVC