CVE-2025-14027

Multiple denial-of-service vulnerabilities exist in the affected product. These issues can be triggered through various crafted inputs, including malformed Class 3 messages, memory leak conditions, and other resource exhaustion scenarios. Exploitation may cause the device to become unresponsive...

PT-2026-3560

Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description Multiple denial-of-service issues exist that can be triggered through crafted inputs, including malformed Class 3 messages, memory leak conditions, and resource exhaustion scenarios. Exploitation may cause the...

CVE-2025-9124

A denial-of-service security issue in the affected product. The security issue stems from a fault occurring when a crafted CIP unconnected explicit message is sent. This can result in a major non-recoverable fault...

EUVD-2025-34182

A denial-of-service security issue in the affected product. The security issue stems from a fault occurring when a crafted CIP unconnected explicit message is sent. This can result in a major non-recoverable fault...

EUVD-2022-42581

Malicious code in bioql PyPI...

Rockwell Automation ControlLogix 5580 Null Pointer Dereference (CVE-2025-9166)

A denial-of-service security issue exists in the affected product and version. The security issue stems from the controller repeatedly attempting to forward messages. The issue could result in a major nonrecoverable fault on the controller. This plugin only works with Tenable.ot. Please visit...

Rockwell Automation 1756-EN4TR, 1756-EN4TRXT Improper Input Validation (CVE-2025-8007)

A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability. This plugin only works...

CVE-2025-9166

A denial-of-service security issue exists in the affected product and version. The security issue stems from the controller repeatedly attempting to forward messages. The issue could result in a major nonrecoverable fault on the controller...

CVE-2025-8007 Rockwell Automation 1756-ENT2R, EN4TR, EN4TRXT Vulnerability

A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...

CVE-2022-1797

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownloa...

CVE-2024-6089

The CVE-2024-6089 entry affects Rockwell Automation 5015 - AENFTXT (FLEXHA 5000 I/O). The issue is improper input validation triggered by manipulated PTP packets, which can cause the secondary adapter to suffer a major nonrecoverable fault, requiring a power cycle to recover. Affected version lis...

CVE-2024-6089 Rockwell Automation Major nonrecoverable fault in 5015 – AENFTXT

An input validation vulnerability exists in the Rockwell Automation 5015 - AENFTXT when a manipulated PTP packet is sent, causing the secondary adapter to result in a major nonrecoverable fault. If exploited, a power cycle is required to recover the product...

CVE-2024-5659

CVE-2024-5659 affects Rockwell Automation controllers (ControlLogix 5580, GuardLogix 5580, 1756-EN4, CompactLogix 5380, Compact GuardLogix 5380, CompactLogix 5480). The flaw is described as an Always-Incorrect Control Flow Implementation (MNRF/Assert) that can be triggered by abnormal packets sen...

CVE-2024-3493

A specific malformed fragmented packet type fragmented packets may be generated automatically by devices that send large amounts of data can cause a major nonrecoverable fault MNRF Rockwell Automation's ControlLogix 5580, Guard Logix 5580, CompactLogix 5380, and 1756-EN4TR. If exploited, the...

CVE-2024-2424

An input validation vulnerability exists in the Rockwell Automation 5015-AENFTXT that causes the secondary adapter to result in a major nonrecoverable fault MNRF when malicious input is entered. If exploited, the availability of the device will be impacted, and a manual restart is required...

CVE-2024-21916

A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault MNRF. The device will restart itself to recover from the MNRF...

PT-2022-24017 · Rockwell Automation · Logix Controllers

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Logix controllers affected versions not specified Description: An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition...

CVE-2022-3157

A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non-recoverable fault MNRF and a denial-of-service condition DOS...

CVE-2022-1797

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownloa...

CVE-2022-1797 Rockwell Automation Logix Controllers Uncontrolled Resource Consumption

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownloa...