42 matches found
EUVD-2012-6294
Malware in sbrugna...
EUVD-2018-6705
Malware in sbrugna...
EUVD-2024-41619
Malicious code in bioql PyPI...
EUVD-2024-38545
Malicious code in bioql PyPI...
CVE-2012-6441
An information exposure of confidential information results when the device receives a specially crafted CIP packet to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP. Successful exploitation of this vulnerability could cause loss of confidentiality. Rockwell Automation EtherNet/I...
CVE-2024-45825
CVE-2024-45825 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service...
CVE-2024-45825
CVE-2024-45825 affects Rockwell Automation’s 5015-U8IHFT I/O module. A denial-of-service condition arises from receiving a malformed CIP packet over the network, causing a major nonrecoverable fault. The issue is attributed to improper input validation, with affected versions documented as 1.012 ...
Rockwell Automation GuardLogix/ControlLogix 5580 Controller Improper Check For Unusual or Exceptional Conditions (CVE-2024-40619)
A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service. This plugin only works with Tenable.ot. Please visit...
Rockwell Automation GuardLogix 5580 and ControlLogix 5580 Denial of Service Vulnerability
Rockwell Automation ControlLogix and Rockwell Automation GuardLogix are both products of Rockwell Automation, U.S.A. Rockwell Automation ControlLogix is a controller. Rockwell Automation GuardLogix is a series of controllers. A denial of service vulnerability exists in the Rockwell Automation...
CVE-2024-40619
CVE-2024-40619 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service...
CVE-2024-40619
CVE-2024-40619 affects Rockwell Automation GuardLogix/ControlLogix 5580 PLCs. The vulnerability arises from an improper check for unusual or exceptional conditions in handling CIP packets received over the network, causing a major nonrecoverable fault and denial-of-service. Affected products incl...
CVE-2024-40619 Rockwell Automation GuardLogix/ControlLogix 5580 Controller denial-of-service Vulnerability via Malformed Packet Handling
CVE-2024-40619 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service...
Rockwell Automation GuardLogix/ControlLogix 5580 Controller
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : ControlLogix 5580, GuardLogix 5580 Vulnerability : Improper Check for Unusual or Exceptional Conditions 2. RISK EVALUATION Successful exploitation of this...
CVE-2020-6998
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to ...
Buffer overflow
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to ...
CVE-2020-6998
CVE-2020-6998 affects Rockwell Automation CompactLogix 5370 and ControlLogix 5570 controllers (versions 33 and earlier). The vulnerability stems from the connection establishment algorithm failing to manage control flow, creating an infinite loop when handling CIP packet requests, which may cause...
Rockwell Automation ControlLogix controllers Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2012-6438)
Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; allows remote attackers to cause a denial of service NIC...
Rockwell Automation ControlLogix controllers Exposure of Sensitive Information to an Unauthorized Actor (CVE-2012-6441)
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules allow remote attackers to obtain sensitive information via a crafted CIP packet. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Rockwell Automation ControlLogix controllers Buffer Overflow (CVE-2012-6436)
Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; allows remote attackers to cause a denial of service CPU...
PT-2021-2365 · Rockwell Automation · Guardlogix 5370 +7
Name of the Vulnerable Software and Affected Versions: Rockwell Automation CompactLogix 5370 versions prior to 34 Rockwell Automation ControlLogix 5570 versions prior to 34 Rockwell Automation CompactLogix 5370 L1 versions prior to 34 Rockwell Automation CompactLogix 5370 L2 versions prior to 34...