Lucene search
K

15 matches found

CVE
CVE
added 2026/06/16 2:20 p.m.56 views

CVE-2026-0647

The 1794-AENTR adapter (Rockwell Automation FLEX I/O dual‑port EtherNet/IP) has an improper authentication flaw in its embedded web server. An unauthenticated attacker can change the device web interface password by sending a crafted HTTP GET request to a specific endpoint, without prior authenti...

8.8CVSS5.3AI score0.00435EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 2:19 p.m.42 views

CVE-2026-0646

The affected product is Rockwell Automation 1794-AENTR adapters (EtherNet/IP). The issue is a denial-of-service caused by improper memory handling of CIP protocol requests in the 1794-AENTR adapter, which can cause the device to fault and drop connections to its linked I/O modules, requiring a ma...

8.7CVSS5.3AI score0.00343EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.25 views

Rockwell Automation 1794-AENT Flex I/O Series B Buffer Copy Without Checking Size of Input (CVE-2020-6083)

An exploitable denial of service vulnerability exists in the ENIP Request Path Port Segment functionality of Allen- Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a malicious...

7.5CVSS7.2AI score0.03454EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.16 views

Rockwell Automation 1794-AENT Flex I/O Series B Buffer Copy Without Checking Size of Input (CVE-2020-6087)

An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen- Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a malicious...

7.8CVSS7.1AI score0.03515EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.25 views

Rockwell Automation 1794-AENT Flex I/O Series B Buffer Copy Without Checking Size of Input (CVE-2020-6085)

An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen- Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a...

7.8CVSS7.1AI score0.03515EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.20 views

Rockwell Automation 1794-AENT Flex I/O Series B Buffer Copy Without Checking Size of Input (CVE-2020-6086)

An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen- Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a malicious...

7.8CVSS7.1AI score0.03515EPSS
Exploits1References4
Talos Blog
Talos Blog
added 2021/02/03 6:13 a.m.23 views

Vulnerability Spotlight: Allen-Bradley Flex I/O vulnerable to denial of service

Jared Rittle of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. The Rockwell Automation Allen-Bradley Flex I/O input/output device is vulnerable to a denial-of-service vulnerability. FLEX I/O provides a wide range of input/output operations while keeping a smaller form factor. Use...

1.5AI score
Exploits0
ICS
ICS
added 2020/10/20 12:0 a.m.161 views

Rockwell Automation 1794-AENT Flex I/O Series B

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: 1794-AENT Flex I/O Series B Vulnerabilities: Classic Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could crash the device being...

7.8CVSS8.4AI score0.03515EPSS
Exploits5References5
Talos Blog
Talos Blog
added 2020/10/13 6:12 a.m.23 views

Vulnerability Spotlight: Denial-of-service vulnerabilities in Allen-Bradley Flex I/O

Jared Rittle of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. The Allen-Bradley Flex input/output system contains multiple denial-of-service vulnerabilities in its ENIP request path data segment. These bugs exist specifically in the 1794-AENT FLEX I/O modular platform. It...

1.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.9 views

Rockwell Automation/Allen-Bradley 1794 FLEX I/O Communication Module Detection

Binary data 193.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.12 views

Rockwell Automation 1794-AENT FLEX I/O Ethernet Adapter Communication Adapter

Binary data 752921.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.12 views

Rockwell Automation 1794-ADN DeviceNet Flex I/O Adapter 1794-ADN/A Communication Adapter

Binary data 752870.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.23 views

Rockwell Automation 1794-ACN15 FLEX I/O ControlNet Adapter (Single Media) 1794-ACN15/A Communication Adapter

Binary data 752888.prm...

7.3AI score
Exploits0References1
NVD
NVD
added 2013/01/24 9:55 p.m.29 views

CVE-2012-6442

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that instructs the product to reset, a DoS can occur. This situation could cause loss of availability and a disruption of communicatio...

7.8CVSS6.5AI score0.32807EPSS
Exploits0References7
Cvelist
Cvelist
added 2013/01/24 9:0 p.m.41 views

CVE-2012-6439 Rockwell Automation ControlLogix PLC Improper Access Control

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that changes the product’s configuration and network parameters, a DoS condition can occur. This situation could cause loss of...

8.5CVSS6.5AI score0.28348EPSS
Exploits0References5
Rows per page
Query Builder