196 matches found
CVE-2024-7515 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation
CVE-2024-7515 IMPACT A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller...
CVE-2024-7515 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation
CVE-2024-7515 IMPACT A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller...
CVE-2024-7507 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation
CVE-2024-7507 IMPACT A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller...
CVE-2024-7507 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation
CVE-2024-7507 IMPACT A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller...
Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, and Compact GuardLogix 5380
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : CompactLogix 5380, ControlLogix 5580, GuardLogix 5580, Compact GuardLogix 5380, CompactLogix 5480 Vulnerability : Improper Input Validation 2. RISK EVALUATION...
Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380 Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of...
PT-2024-6590 · Rockwell Automation · Compactlogix +2
Name of the Vulnerable Software and Affected Versions: Rockwell Automation CompactLogix versions affected versions not specified Rockwell Automation ControlLogix versions affected versions not specified Rockwell Automation GuardLogix versions affected versions not specified Description: A...
PT-2024-5890 · Rockwell Automation · Controllogix/Guardlogix 5580 +1
Name of the Vulnerable Software and Affected Versions: Rockwell Automation ControlLogix/GuardLogix 5580 versions affected versions not specified Rockwell Automation CompactLogix/Compact GuardLogix 5380 versions affected versions not specified Description: The issue is related to errors in...
The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, GuardLogix, and communication model 1756-EN4 controllers, related to the implementation of incorrect control flows, allows a hacker to trigger a service failure.
The vulnerability of microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, GuardLogix, and communication models 1756-EN4 is related to the implementation of an incorrect control flow. Exploiting this vulnerability can allow a malicious actor to trigger service failures...
Rockwell Automation GuardLogix and CompactLogix Security Vulnerabilities
Rockwell Automation GuardLogix and Rockwell Automation CompactLogix are both series of controllers from Rockwell Automation, Inc. A security vulnerability exists in several Rockwell Automation products. An attacker has exploited the vulnerability to cause a major unrecoverable failure of all...
Rockwell Automation ControlLogix, GuardLogix, and CompactLogix
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.3 ATTENTION : Low attack complexity Vendor : Rockwell Automation Equipment : ControlLogix, GuardLogix, CompactLogix Vulnerability : Always-Incorrect Control Flow Implementation 2. RISK EVALUATION Successful exploitation of this vulnerability could...
Rockwell Automation ControlLogix and GuardLogix Improper Input Validation (CVE-2024-3493)
A specific malformed fragmented packet type fragmented packets may be generated automatically by devices that send large amounts of data can cause a major nonrecoverable fault MNRF. If exploited, the affected product will become unavailable and require a manual restart to recover it. Additionally...
CVE-2024-3493
CVE-2024-3493 affects Rockwell Automation ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, and 1756-EN4TR. The root cause is improper input validation triggering a major nonrecoverable fault (MNRF) when a specific malformed fragmented packet is processed; exploitation can render the device ...
Rockwell Automation ControlLogix 5580, Guard Logix 5580, CompactLogix 5380和1756-EN4TR 安全漏洞
Rockwell Automation ControlLogix is a controller from Rockwell Automation USA. A security vulnerability exists in Rockwell Automation ControlLogix 5580, Guard Logix 5580, CompactLogix 5380, and 1756-EN4TR, which stems from an invalid header value resulting in the presence of a security...
CISA Releases Nine Industrial Control Systems Advisories
CISA released nine Industrial Control Systems ICS advisories on June 29, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-180-01 Delta Electronics InfraSuite Device Master ICSA-23-180-02 Schneider Electric...
The vulnerability of microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, and GuardLogix programmable logic controllers, related to errors in processing input data, allows a intruder to trigger a service failure.
The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, and GuardLogix controllers is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system...
PT-2022-6079 · Rockwell Automation · Compactlogix +3
Name of the Vulnerable Software and Affected Versions: Rockwell Automation controllers affected versions not specified Rockwell Automation CompactLogix, ControlLogix, GuardLogix affected versions not specified Description: A vulnerability exists in the Rockwell Automation controllers that allows ...
Rockwell Automation CompactLogix 5370 输入验证错误漏洞
The Rockwell Automation CompactLogix 5370 is a programmable logic controller from Rockwell Automation. An input validation error vulnerability exists in Rockwell Automation CompactLogix, Compact GuardLogix, ControlLogix, and GuardLogix controllers. An attacker could exploit the vulnerability to...
Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers Improper Limitation of a Pathname to a Restricted Directory (CVE-2020-6998)
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to ...
CVE-2020-6998
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to ...