24 matches found
CVE-2026-10703
A security vulnerability has been detected in EIPStackGroup OpENer up to 2.3.0. Affected is the function CreateMessageRouterRequestStructure of the file cipmessagerouter.c of the component SendRRData Handler. The manipulation leads to use after free. Remote exploitation of the attack is possible...
EUVD-2012-6292
Malware in sbrugna...
EUVD-2024-47344
Malicious code in bioql PyPI...
CVE-2012-6442
When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that instructs the product to reset, a DoS can occur. This situation could cause loss of availability and a disruption of communicatio...
The vulnerability of the CIP Message Handler component in Rockwell Automation’s programmable logic controllers ControlLogix 5580, CompactLogix 5380, Compact GuardLogix 5380 SIL 2, Compact GuardLogix 5380 SIL 3, CompactLogix 5480, FactoryTalk Logix Echo allows a intruder to trigger a service failure.
The vulnerability of the CIP Message Handler component in Rockwell Automation’s programmable logic controllers ControlLogix 5580, CompactLogix 5380, Compact GuardLogix 5380 SIL 2, Compact GuardLogix 5380 SIL 3, CompactLogix 5480, and FactoryTalk Logix Echo is related to errors in processing input...
Rockwell Automation ControlLogix Improper Input Validation (CVE-2024-6207)
A denial-of-service vulnerability exists in the affected products that will cause the device to result in a major nonrecoverable fault MNRF when it receives an invalid CIP request. To exploit this vulnerability a malicious user must chain this exploits with CVE-2021-22681 and send a specially...
CVE-2024-6207
CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html and send a specially crafted CIP message to the device. If exploited, a threat actor could help prevent access to the legitimate user and end connections to connected devices including th...
CVE-2024-6207
CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html and send a specially crafted CIP message to the device. If exploited, a threat actor could help prevent access to the legitimate user and end connections to connected devices including th...
CVE-2024-45825 5015-U8IHFT Denial-of-Service Vulnerability via CIP Message
CVE-2024-45825 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service...
CVE-2024-45825 5015-U8IHFT Denial-of-Service Vulnerability via CIP Message
CVE-2024-45825 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service...
Rockwell Automation Kinetix 5700 Denial of Service Vulnerability
The Rockwell Automation Kinetix 5700 is the first Kinetix drive from Rockwell Automation designed with an external common AC/DC bus connection system. It reduces hardware requirements and allows for seamless expansion, using a single platform for single- or multi-axis systems. A denial of service...
Rockwell Automation 1756 EN2 and 1756 EN3 Denial of Service Vulnerabilities
Rockwell Automation 1756 is a scalable controller solution from Rockwell Automation. It is capable of addressing a large number of I/O points. A denial of service vulnerability exists in Rockwell Automation 1756 EN2 and 1756 EN3, which arises from a failure to properly handle incoming error...
Rockwell Automation 1756 缓冲区错误漏洞
The Rockwell Automation 1756 is a scalable controller solution from Rockwell Automation. It is capable of addressing a large number of I/O points. A security vulnerability exists in the Rockwell Automation 1756-EN4, which originates from a malicious user who may be able to assert a denial of...
Rockwell Automation Controllers Denial Of Service (CVE-2012-6439)
Rockwell Automation EtherNet/IP products allow remote attackers to cause a denial of service control and communication outage via a CIP message that modifies the 1 configuration or 2 network parameters. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-...
Rockwell Automation ControlLogix controllers Resource Management Errors (CVE-2012-6435)
Rockwell Automation SoftLogix controllers 19 and earlier; ControlLogix controllers 20 and earlier; GuardLogix controllers 20 and earlier; and MicroLogix 1100 and 1400 allow remote attackers to cause a denial of service control and communication outage via a CIP message that specifies a...
Rockwellautomation Controllogix Unspecified Vulnerability
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...
Rockwellautomation Controllogix Unspecified Vulnerability
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...
Rockwellautomation Ethernet\/ip Improper Restriction of Operations within the Bounds of a Memory Buffer
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...
Rockwell Automation/Allen-Bradley Ethernet/IP Products Denial of Service
Binary data 720000.prm...
Rockwell Automation/Allen-Bradley Ethernet/IP Products Improper Access Control
Binary data 720030.prm...