Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2023/07/13 9:0 a.m.43 views

Rockwell Automation ControlLogix Bugs Expose Industrial Systems to Remote Attacks

The U.S. Cybersecurity and Infrastructure Security Agency CISA has alerted of two security flaws impacting Rockwell Automation ControlLogix EtherNet/IP ENIP communication module models that could be exploited to achieve remote code execution and denial-of-service DoS. "The results and impact of...

8.1AI score0.04965EPSS
Exploits0
Circl
Circl
added 2023/07/12 4:15 p.m.8 views

CVE-2023-3595

creationtimestamp| type| source ---|---|--- 2023-07-12 16:15:45+00:00| seen| https://t.me/cibsecurity/66547 2023-07-13 15:31:43+00:00| seen| https://t.me/ctinow/123659 2023-07-13 17:35:56+00:00| seen| https://t.me/truesecator/4612 2024-05-22 17:00:07+00:00| seen| https://t.me/truesecator/5765...

9.8CVSS9AI score0.04965EPSS
Exploits0References7
NVD
NVD
added 2023/07/12 1:15 p.m.27 views

CVE-2023-3595

Where this vulnerability exists in the Rockwell Automation 1756 EN2 and 1756 EN3 ControlLogix communication products, it could allow a malicious user to perform remote code execution with persistence on the target system through maliciously crafted CIP messages. This includes the ability to modif...

9.8CVSS9.7AI score0.04965EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/12 12:37 p.m.39 views

CVE-2023-3595 Rockwell Automation ControlLogix Communication Modules Vulnerable to Remote Code Execution

Where this vulnerability exists in the Rockwell Automation 1756 EN2 and 1756 EN3 ControlLogix communication products, it could allow a malicious user to perform remote code execution with persistence on the target system through maliciously crafted CIP messages. This includes the ability to modif...

9.8CVSS9.9AI score0.04965EPSS
Exploits0References1
CVE
CVE
added 2023/07/12 12:37 p.m.96 views

CVE-2023-3595

CVE-2023-3595 affects Rockwell Automation 1756 EN2* and EN3* ControlLogix communication modules. The issue is an out-of-bounds write that could allow a remote attacker to execute arbitrary code with persistence via malicious CIP messages, risking modification, denial, and exfiltration of data and...

9.8CVSS9.7AI score0.04965EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2023/07/12 6:0 a.m.42 views

Rockwell Automation Select Communication Modules

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: 1756-EN2T, 1756-EN2TK, 1756-EN2TXT, 1756-EN2TP, 1756-EN2TPK, 1756-EN2TPXT, 1756-EN2TR, 1756-EN2TRK, 1756-EN2TRXT, 1756-EN2F, 1756-EN2FK, 1756-EN3TR, 1756-EN3TRK,...

9.8CVSS9.9AI score0.04965EPSS
Exploits0References8
Rows per page
Query Builder