Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500272.NASLHistoryNov 08, 2019 - 12:00 a.m.
Rockwellautomation Micrologix Unspecified Vulnerability
2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
6
0.001 Low
EPSS
Percentile
43.5%
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information, modification of settings, or modification of ladder logic. An attacker can send unauthenticated packets to trigger this vulnerability.Required Keyswitch State: REMOTE or PROG Associated Fault Code: 0001 Fault Type: Non-User Description: A fault state can be triggered by setting the NVRAM/memory module user program mismatch bit (S2:9) when a memory module is NOT installed.
File data ot_500272.nasl| Vendor | Product | Version | CPE |
|---|---|---|---|
| rockwellautomation | micrologix_1400_b_firmware | * | cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:*:*:*:*:*:*:*:* |
| rockwellautomation | micrologix_1400 | - | cpe:2.3:h:rockwellautomation:micrologix_1400:-:*:*:*:*:*:*:* |
Related
nessus
nessus
Rockwell Micrologix Improper Access Control (CVE-2017-14464)
2022-02-07 00:00:00
prion
prion
Improper access control
2018-04-05 21:29:00
cvelist
cvelist
CVE-2017-14464
2018-03-28 00:00:00
nvd
nvd
CVE-2017-14464
2018-04-05 21:29:00
CVE-2017-12091
2018-02-27 16:29:00
cve
cve
CVE-2017-14464
2018-04-05 21:29:00
CVE-2017-12091
2018-02-27 16:29:00
