196 matches found
EUVD-2024-32079
Malicious code in bioql PyPI...
CVE-2025-9160 Rockwell Automation CompactLogix® 5480 Code Execution Vulnerability
A code execution security issue exists in the affected product. An attacker with physical access could abuse the maintenance menu of the controller with a crafted payload. The security issue can result in arbitrary code execution...
CVE-2025-9160
CVE-2025-9160 is a code execution vulnerability affecting Rockwell Automation CompactLogix 5480 controllers. The issue allows an attacker with physical access to abuse the controller’s maintenance menu by sending a crafted payload, potentially resulting in arbitrary code execution. Exploitation d...
CVE-2025-9160 Rockwell Automation CompactLogix® 5480 Code Execution Vulnerability
A code execution security issue exists in the affected product. An attacker with physical access could abuse the maintenance menu of the controller with a crafted payload. The security issue can result in arbitrary code execution...
CISA Releases Fourteen Industrial Control Systems Advisories
CISA released fourteen Industrial Control Systems ICS advisories on September 9, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-252-01 Rockwell Automation ThinManager ICSA-25-252-02 ABB Cylon Aspect BMS/BAS...
Rockwell Automation CompactLogix® 5480
RISK EVALUATION Successful exploitation of this vulnerability could result in arbitrary code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control system...
Rockwell Automation CompactLogix 5480 安全漏洞
The Rockwell Automation CompactLogix 5480 is a programmable logic controller from Rockwell Automation USA. A security vulnerability exists in the Rockwell Automation CompactLogix 5480 that originates from physical access to the Abuse Maintenance menu and could lead to the execution of arbitrary...
CVE-2020-6998
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to ...
Rockwell Automation多款产品 安全漏洞
Rockwell Automation ControlLogix and others are products of Rockwell Automation, Inc.Rockwell Automation ControlLogix is a controller.Rockwell Automation GuardLogix Rockwell Automation GuardLogix is a series of controllers.Rockwell Automation CompactLogix is a series of controllers. A security...
Rockwell Automation Logix Controllers
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : Compact GuardLogix, CompactLogix, ControlLogix, GuardLogix, 1756-EN4TR Vulnerability : Uncontrolled Resource Consumption 2. RISK EVALUATION Successful...
Rockwell Automation CompactLogix 安全漏洞
Rockwell Automation CompactLogix is a family of controllers from Rockwell Automation USA. A security vulnerability exists in Rockwell Automation CompactLogix 5380 controllers prior to version v33.011, which stems from a memory leak that results in a denial of service vulnerability...
The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, and GuardLogix programmable logic controllers allows a intruder to trigger a service failure.
The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, and GuardLogix controllers is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system from a remote location...
The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, GuardLogix, and Communication Module 1756-EN4 systems allows a intruder to trigger a service failure.
The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, GuardLogix, and Communication Module 1756-EN4 is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system remotely...
CVE-2024-6077 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP
A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover...
CVE-2024-6077 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP
A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover...
Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix 5380
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix 5380, CompactLogix 5480, 1756-EN4 Vulnerability : Improper Input Validation 2. RISK...
Rockwell Automation CompactLogix 安全漏洞
Rockwell Automation CompactLogix is a family of controllers from Rockwell Automation USA. A security vulnerability exists in Rockwell Automation CompactLogix that stems from a denial of service that can result when specially crafted packets are sent to a CIP security object...
PT-2024-6546 · Rockwell Automation · Controllogix/Guardlogix 5580 +1
Name of the Vulnerable Software and Affected Versions: Rockwell Automation ControlLogix/GuardLogix 5580 versions prior to the fixed version Rockwell Automation CompactLogix/Compact GuardLogix 5380 versions prior to the fixed version Description: A denial-of-service issue exists in Rockwell...
Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, and Compact GuardLogix 5380 Improper Input Validation (CVE-2024-7515)
A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900...
Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380 Improper Input Validation (CVE-2024-7507)
A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...