Rockwell Automation Stratix Industrial Managed Ethernet Switch Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2018-0167)

A vulnerability in the LLDP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an adjacent, unauthenticated attacker to cause a DoS condition or execute arbitrary code with elevated privileges. This plugin only works with Tenable.ot. Please visit...

Rockwell Automation Stratix Industrial Managed Ethernet Switch Use of Externally-Controlled Format String (CVE-2018-0175)

A vulnerability in the LLDP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an adjacent, unauthenticated attacker to cause a DoS condition or execute arbitrary code with elevated privileges. This plugin only works with Tenable.ot. Please visit...

Rockwell Automation Stratix Industrial Managed Ethernet Switch Improper Input Validation (CVE-2018-0174)

A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The vulnerability exists because the affected...

Rockwell Automation Stratix Services Router Improper Input Validation (CVE-2018-0158)

A vulnerability in the Internet Key Exchange Version 2 IKEv2 module of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a memory leak or a reload of an affected device that leads to a denial of service DoS condition. The vulnerability is due to...

Rockwell Automation Stratix and ArmorStratix Switches < 15.3 IOS SNMP Remote Code Execution (ICSA-17-208-04)

Binary data 720289.prm...

Rockwell Automation Stratix 5400/5410/5700 and ArmorStratix 5700

1. EXECUTIVE SUMMARY ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: Stratix 5400/5410/5700, ArmorStratix 5700 Vulnerability: Uncontrolled Resource Consumption 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an...

Rockwell Automation Stratix 5400/5410/5700/8000/8300 and ArmorStratix 5700

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: Stratix 5400/5410/5700/8000/8300, ArmorStratix 5700 Vulnerabilities: Resource Management Errors, Improper Input Validation 2. RISK EVALUATION Successful exploitation...

Rockwell Automation Stratix and ArmorStratix Switches

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit. Vendor : Rockwell Automation Equipment : Allen-Bradley Stratix and ArmorStratix Switches Vulnerabilities : Improper Input Validation, Resource Management Errors, Improper Restriction of Operations within...

Rockwell Automation Allen-Bradley Stratix and ArmorStratix

CVSS v3 8.8 ATTENTION: Remotely exploitable/low skill level to exploit Vendor: Rockwell Automation Equipment: Allen-Bradley Stratix and ArmorStratix Vulnerabilities: SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software REPOSTED INFORMATION This advisory was originally poste...