Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-6077
HistorySep 12, 2024 - 8:15 p.m.

CVE-2024-6077

2024-09-1220:15:05
CWE-20
[email protected]
web.nvd.nist.gov
5
denial of service
rockwell automation
cip security object
factory reset

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

9.6%

JSON

A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover.

Affected configurations

Nvd
Node
rockwellautomationcompactlogix_5380_firmwareMatch32.011
AND
rockwellautomationcompactlogix_5380Match-
Node
rockwellautomationcompact_guardlogix_5380_sil_2_firmwareMatch32.013
AND
rockwellautomationcompact_guardlogix_5380_sil_2Match-
Node
rockwellautomationcompact_guardlogix_5380_sil_3_firmwareMatch32.011
AND
rockwellautomationcompact_guardlogix_5380_sil_3Match-
Node
rockwellautomationcompactlogix_5480_firmwareMatch32.011
AND
rockwellautomationcompactlogix_5480Match-
Node
rockwellautomationcontrollogix_5580_firmwareMatch33.011
AND
rockwellautomationcontrollogix_5580Match-
Node
rockwellautomationguardlogix_5580_firmwareMatch32.011
AND
rockwellautomationguardlogix_5580Match-
Node
rockwellautomation1756-en4_firmwareMatch2.001
AND
rockwellautomation1756-en4Match-
VendorProductVersionCPE
rockwellautomationcompactlogix_5380_firmware32.011cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:32.011:*:*:*:*:*:*:*
rockwellautomationcompactlogix_5380-cpe:2.3:h:rockwellautomation:compactlogix_5380:-:*:*:*:*:*:*:*
rockwellautomationcompact_guardlogix_5380_sil_2_firmware32.013cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_2_firmware:32.013:*:*:*:*:*:*:*
rockwellautomationcompact_guardlogix_5380_sil_2-cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_2:-:*:*:*:*:*:*:*
rockwellautomationcompact_guardlogix_5380_sil_3_firmware32.011cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_3_firmware:32.011:*:*:*:*:*:*:*
rockwellautomationcompact_guardlogix_5380_sil_3-cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_3:-:*:*:*:*:*:*:*
rockwellautomationcompactlogix_5480_firmware32.011cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:32.011:*:*:*:*:*:*:*
rockwellautomationcompactlogix_5480-cpe:2.3:h:rockwellautomation:compactlogix_5480:-:*:*:*:*:*:*:*
rockwellautomationcontrollogix_5580_firmware33.011cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:33.011:*:*:*:*:*:*:*
rockwellautomationcontrollogix_5580-cpe:2.3:h:rockwellautomation:controllogix_5580:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 141

Related

cvelist 1
vulnrichment 1
cve 1
ics 1
cvelist
cvelist
CVE-2024-6077 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogixยฎ 5380 Vulnerable to DoS vulnerability via CIP
2024-09-12 19:59:40
vulnrichment
vulnrichment
CVE-2024-6077 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogixยฎ 5380 Vulnerable to DoS vulnerability via CIP
2024-09-12 19:59:40
cve
cve
CVE-2024-6077
2024-09-12 20:15:05
ics
ics
Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix 5380
2024-09-12 12:00:00

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

9.6%

JSON
Related for NVD:CVE-2024-6077
cvelist1vulnrichment1cve1ics1