Lucene search
K

196 matches found

Cvelist
Cvelist
added 2024/08/14 7:40 p.m.40 views

CVE-2024-7515 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation

CVE-2024-7515 IMPACT A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller...

8.7CVSS0.00517EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/14 7:40 p.m.41 views

CVE-2024-7515 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation

CVE-2024-7515 IMPACT A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller...

8.7CVSS6.8AI score0.00517EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/14 7:35 p.m.31 views

CVE-2024-7507 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation

CVE-2024-7507 IMPACT A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller...

8.7CVSS0.005EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/14 7:35 p.m.33 views

CVE-2024-7507 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation

CVE-2024-7507 IMPACT A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller...

8.7CVSS6.8AI score0.005EPSS
Exploits0References1
ICS
ICS
added 2024/08/13 6:0 a.m.25 views

Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, and Compact GuardLogix 5380

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : CompactLogix 5380, ControlLogix 5580, GuardLogix 5580, Compact GuardLogix 5380, CompactLogix 5480 Vulnerability : Improper Input Validation 2. RISK EVALUATION...

8.7CVSS6.5AI score0.00517EPSS
Exploits0References10
ICS
ICS
added 2024/08/13 6:0 a.m.28 views

Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380 Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of...

8.7CVSS6.6AI score0.005EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.14 views

PT-2024-6590 · Rockwell Automation · Compactlogix +2

Name of the Vulnerable Software and Affected Versions: Rockwell Automation CompactLogix versions affected versions not specified Rockwell Automation ControlLogix versions affected versions not specified Rockwell Automation GuardLogix versions affected versions not specified Description: A...

8.7CVSS7.2AI score0.005EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.6 views

PT-2024-5890 · Rockwell Automation · Controllogix/Guardlogix 5580 +1

Name of the Vulnerable Software and Affected Versions: Rockwell Automation ControlLogix/GuardLogix 5580 versions affected versions not specified Rockwell Automation CompactLogix/Compact GuardLogix 5380 versions affected versions not specified Description: The issue is related to errors in...

8.7CVSS7AI score0.00517EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/06/24 12:0 a.m.4 views

The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, GuardLogix, and communication model 1756-EN4 controllers, related to the implementation of incorrect control flows, allows a hacker to trigger a service failure.

The vulnerability of microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, GuardLogix, and communication models 1756-EN4 is related to the implementation of an incorrect control flow. Exploiting this vulnerability can allow a malicious actor to trigger service failures...

7.4CVSS5.4AI score0.00311EPSS
Exploits0References3Affected Software6
CNNVD
CNNVD
added 2024/06/14 12:0 a.m.4 views

Rockwell Automation GuardLogix and CompactLogix Security Vulnerabilities

Rockwell Automation GuardLogix and Rockwell Automation CompactLogix are both series of controllers from Rockwell Automation, Inc. A security vulnerability exists in several Rockwell Automation products. An attacker has exploited the vulnerability to cause a major unrecoverable failure of all...

8.3CVSS6.7AI score0.00311EPSS
Exploits0References2
ICS
ICS
added 2024/06/11 6:0 a.m.37 views

Rockwell Automation ControlLogix, GuardLogix, and CompactLogix

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.3 ATTENTION : Low attack complexity Vendor : Rockwell Automation Equipment : ControlLogix, GuardLogix, CompactLogix Vulnerability : Always-Incorrect Control Flow Implementation 2. RISK EVALUATION Successful exploitation of this vulnerability could...

8.3CVSS6.4AI score0.00311EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/04/17 12:0 a.m.32 views

Rockwell Automation ControlLogix and GuardLogix Improper Input Validation (CVE-2024-3493)

A specific malformed fragmented packet type fragmented packets may be generated automatically by devices that send large amounts of data can cause a major nonrecoverable fault MNRF. If exploited, the affected product will become unavailable and require a manual restart to recover it. Additionally...

8.6CVSS5.8AI score0.00637EPSS
Exploits0References3
CVE
CVE
added 2024/04/15 9:17 p.m.72 views

CVE-2024-3493

CVE-2024-3493 affects Rockwell Automation ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, and 1756-EN4TR. The root cause is improper input validation triggering a major nonrecoverable fault (MNRF) when a specific malformed fragmented packet is processed; exploitation can render the device ...

8.6CVSS6.7AI score0.00637EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/04/15 12:0 a.m.3 views

Rockwell Automation ControlLogix 5580, Guard Logix 5580, CompactLogix 5380和1756-EN4TR 安全漏洞

Rockwell Automation ControlLogix is a controller from Rockwell Automation USA. A security vulnerability exists in Rockwell Automation ControlLogix 5580, Guard Logix 5580, CompactLogix 5380, and 1756-EN4TR, which stems from an invalid header value resulting in the presence of a security...

8.6CVSS6.8AI score0.00637EPSS
Exploits0References2
CISA
CISA
added 2023/06/29 12:0 p.m.4 views

CISA Releases Nine Industrial Control Systems Advisories

CISA released nine Industrial Control Systems ICS advisories on June 29, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-180-01 Delta Electronics InfraSuite Device Master ICSA-23-180-02 Schneider Electric...

7AI score
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2023/01/03 12:0 a.m.3 views

The vulnerability of microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, and GuardLogix programmable logic controllers, related to errors in processing input data, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed software in Rockwell Automation’s CompactLogix, ControlLogix, and GuardLogix controllers is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system...

10CVSS7.2AI score0.0143EPSS
Exploits0References5Affected Software6
Positive Technologies
Positive Technologies
added 2022/12/16 12:0 a.m.5 views

PT-2022-6079 · Rockwell Automation · Compactlogix +3

Name of the Vulnerable Software and Affected Versions: Rockwell Automation controllers affected versions not specified Rockwell Automation CompactLogix, ControlLogix, GuardLogix affected versions not specified Description: A vulnerability exists in the Rockwell Automation controllers that allows ...

10CVSS7.4AI score0.0143EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/12/09 12:0 a.m.8 views

Rockwell Automation CompactLogix 5370 输入验证错误漏洞

The Rockwell Automation CompactLogix 5370 is a programmable logic controller from Rockwell Automation. An input validation error vulnerability exists in Rockwell Automation CompactLogix, Compact GuardLogix, ControlLogix, and GuardLogix controllers. An attacker could exploit the vulnerability to...

8.6CVSS7.4AI score0.01221EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/08/04 12:0 a.m.116 views

Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers Improper Limitation of a Pathname to a Restricted Directory (CVE-2020-6998)

The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to ...

8.6CVSS7.8AI score0.0174EPSS
Exploits0References3
OSV
OSV
added 2022/07/27 9:15 p.m.7 views

CVE-2020-6998

The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to ...

8.6CVSS5.8AI score0.0174EPSS
Exploits0References2
Rows per page
Query Builder