7 matches found
CVE-2025-12012
The CVE-2025-12012 entry concerns Rockwell Automation 5380/5480/5580 controllers. A denial-of-service vulnerability could allow a malicious user to write invalid file data to the controller, potentially triggering a major non-recoverable fault (MNRF). The available documents do not specify affect...
CVE-2025-12011
CVE-2025-12011 describes a denial-of-service vulnerability in Rockwell Automation 5370/5570 controllers (CompactLogix/ControlLogix family). The issue allows a remote attacker to load an invalid project, triggering a major non-recoverable fault (MNRF) on the device. Based on the available document...
EUVD-2024-47370
Malicious code in bioql PyPI...
CVE-2024-6242 Rockwell Automation Chassis Restrictions Bypass Vulnerability in Select Logix Devices
A vulnerability exists in Rockwell Automation affected products that allows a threat actor to bypass the Trusted® Slot feature in a ControlLogix® controller. If exploited on any affected module in a 1756 chassis, a threat actor could potentially execute CIP commands that modify user projects and/...
CVE-2024-6242
CVE-2024-6242 – Rockwell Automation ControlLogix/Logix devices is a vulnerability that bypasses the Trusted Slot protection via an unprotected alternate channel in 1756 chassis. A threat actor could send CIP programming/configuration commands to modify user projects or device configuration on aff...
CVE-2024-6242 Rockwell Automation Chassis Restrictions Bypass Vulnerability in Select Logix Devices
A vulnerability exists in Rockwell Automation affected products that allows a threat actor to bypass the Trusted® Slot feature in a ControlLogix® controller. If exploited on any affected module in a 1756 chassis, a threat actor could potentially execute CIP commands that modify user projects and/...
CVE-2012-6440 Rockwell Automation ControlLogix PLC Improper Input Validation
The Web server password authentication mechanism used by the products is vulnerable to a MitM and Replay attack. Successful exploitation of this vulnerability will allow unauthorized access of the product’s Web server to view and alter product configuration and diagnostics information. Rockwell...