Lucene search
+L

22 matches found

CVE
CVE
added 3 days ago8 views

CVE-2025-11698

The CVE-2025-11698 vulnerability affects 5380/5480/5580 controllers with boot firmware versions below 1.072. It enables a denial-of-service by allowing a malicious actor to write invalid file data to the controller, potentially causing a major non-recoverable fault (MNRF). The documents do not pr...

9.2CVSS6.1AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 1:15 p.m.5 views

CVE-2025-9124

A denial-of-service security issue in the affected product. The security issue stems from a fault occurring when a crafted CIP unconnected explicit message is sent. This can result in a major non-recoverable fault...

8.7CVSS0.00383EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 12:24 p.m.13 views

CVE-2025-9124

CVE-2025-9124 affects Rockwell Automation’s Compact GuardLogix 5370 controllers. The vulnerability stems from a fault when a crafted CIP unconnected explicit message is sent, leading to a denial-of-service and a major non-recoverable fault. According to the connected documents, the CVSS v4.0 base...

8.7CVSS6.3AI score0.00383EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.9 views

PT-2025-41918

Name of the Vulnerable Software and Affected Versions versions prior to 2025-9124 Description A security issue can lead to a denial-of-service condition. This occurs due to a fault when a specifically crafted CIP unconnected explicit message is sent, potentially resulting in a major,...

8.7CVSS6.2AI score0.00383EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-2668

Malware in sbrugna...

7.8CVSS7.5AI score0.06104EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27254

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00239EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/11 1:23 p.m.24 views

CVE-2025-8007

A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...

7.1CVSS6.7AI score0.00239EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 1:15 p.m.7 views

CVE-2025-8007

A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...

7.1CVSS0.00239EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/09 12:29 p.m.2 views

CVE-2025-8007 Rockwell Automation 1756-ENT2R, EN4TR, EN4TRXT Vulnerability

A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...

7.1CVSS6.1AI score0.00239EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/12/23 12:0 a.m.44 views

Rockwell Automation GuardLogix and ControlLogix controllers Improper Input Validation (CVE-2022-3157)

A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non- recoverable fault MNRF and a denial-of-service condition DOS. - A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a majo...

8.6CVSS7.1AI score0.0143EPSS
Exploits0References4
CNVD
CNVD
added 2022/12/20 12:0 a.m.43 views

Rockwell Automation controllers denial of service vulnerability (CNVD-2025-04522)

Rockwell Automation controllers are a series of controllers from Rockwell Automation. A denial of service vulnerability exists in Rockwell Automation controllers, which stems from its controllers mishandling of incorrectly formatted CIP requests, and can be exploited by an attacker to cause a maj...

8.6CVSS6.6AI score0.0143EPSS
Exploits0References1
Prion
Prion
added 2022/12/19 11:15 p.m.17 views

Design/Logic Flaw

An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault. If the target device becomes unavailable, a user wou...

5CVSS7.3AI score0.01221EPSS
Exploits0References1Affected Software5
Cvelist
Cvelist
added 2022/12/19 10:23 p.m.39 views

CVE-2022-3752 Rockwell Automation GuardLogix and ControlLogix controllers Vulnerable to Denial-Of-Service Attack

An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault. If the target device becomes unavailable, a user wou...

8.6CVSS8.5AI score0.01221EPSS
Exploits0References1
CVE
CVE
added 2022/12/16 8:35 p.m.79 views

CVE-2022-3157

Rockwell Automation GuardLogix, ControlLogix, and CompactLogix controllers are affected by CVE-2022-3157 through improper input validation of CIP requests, potentially allowing a remote attacker to trigger a major non-recoverable fault (MNRF) and a denial-of-service (DOS) condition. The IOCs/affe...

8.6CVSS7.9AI score0.0143EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/12/16 12:0 a.m.17 views

Rockwell Automation controllers 输入验证错误漏洞

Rockwell Automation controllers are a series of controllers from Rockwell Automation. A denial of service vulnerability exists in Rockwell Automation controllers, which stems from its controllers mishandling of incorrectly formatted CIP requests, and can be exploited by an attacker to cause a maj...

8.6CVSS6.7AI score0.0143EPSS
Exploits0References4
Talos
Talos
added 2019/08/13 12:0 a.m.42 views

Schneider Electric Modicon M580 HTTP Request Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the HTTP request processing of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.70. An appropriately timed HTTP request can cause the device to enter a non-recoverable fault state, resultin...

7.1CVSS5.9AI score0.011EPSS
Exploits0
Talos
Talos
added 2019/08/13 12:0 a.m.66 views

Schneider Electric Modicon M580 UMAS Read System Coils and Registers Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the UMAS Read System Coils and Registers functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.80. A specially crafted UMAS command can cause the device to enter a non-recoverab...

7.8CVSS7.8AI score0.01526EPSS
Exploits0
Talos
Talos
added 2019/06/10 12:0 a.m.193 views

Schneider Electric Modicon M580 UMAS function code 0x65 denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the UMAS function code 0x65 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault...

7.5CVSS7.7AI score0.02304EPSS
Exploits1
Talos
Talos
added 2019/06/10 12:0 a.m.197 views

Schneider Electric Modicon M580 UMAS write system bits and blocks denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the UMAS write system bits and blocks functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted set of UMAS commands can cause the device to enter a...

7.5CVSS7.6AI score0.02236EPSS
Exploits1
Talos
Talos
added 2019/06/10 12:0 a.m.205 views

Schneider Electric Modicon M580 UMAS memory block read denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the UMAS memory block read function of the Schneider Electric Modicon M580 programmable automation controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault state,...

7.5CVSS7.7AI score0.03289EPSS
Exploits1
Rows per page
Query Builder