22 matches found
CVE-2025-11698
The CVE-2025-11698 vulnerability affects 5380/5480/5580 controllers with boot firmware versions below 1.072. It enables a denial-of-service by allowing a malicious actor to write invalid file data to the controller, potentially causing a major non-recoverable fault (MNRF). The documents do not pr...
CVE-2025-9124
A denial-of-service security issue in the affected product. The security issue stems from a fault occurring when a crafted CIP unconnected explicit message is sent. This can result in a major non-recoverable fault...
CVE-2025-9124
CVE-2025-9124 affects Rockwell Automation’s Compact GuardLogix 5370 controllers. The vulnerability stems from a fault when a crafted CIP unconnected explicit message is sent, leading to a denial-of-service and a major non-recoverable fault. According to the connected documents, the CVSS v4.0 base...
PT-2025-41918
Name of the Vulnerable Software and Affected Versions versions prior to 2025-9124 Description A security issue can lead to a denial-of-service condition. This occurs due to a fault when a specifically crafted CIP unconnected explicit message is sent, potentially resulting in a major,...
EUVD-2019-2668
Malware in sbrugna...
EUVD-2025-27254
Malicious code in bioql PyPI...
CVE-2025-8007
A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...
CVE-2025-8007
A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...
CVE-2025-8007 Rockwell Automation 1756-ENT2R, EN4TR, EN4TRXT Vulnerability
A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...
Rockwell Automation GuardLogix and ControlLogix controllers Improper Input Validation (CVE-2022-3157)
A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non- recoverable fault MNRF and a denial-of-service condition DOS. - A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a majo...
Rockwell Automation controllers denial of service vulnerability (CNVD-2025-04522)
Rockwell Automation controllers are a series of controllers from Rockwell Automation. A denial of service vulnerability exists in Rockwell Automation controllers, which stems from its controllers mishandling of incorrectly formatted CIP requests, and can be exploited by an attacker to cause a maj...
Design/Logic Flaw
An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault. If the target device becomes unavailable, a user wou...
CVE-2022-3752 Rockwell Automation GuardLogix and ControlLogix controllers Vulnerable to Denial-Of-Service Attack
An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault. If the target device becomes unavailable, a user wou...
CVE-2022-3157
Rockwell Automation GuardLogix, ControlLogix, and CompactLogix controllers are affected by CVE-2022-3157 through improper input validation of CIP requests, potentially allowing a remote attacker to trigger a major non-recoverable fault (MNRF) and a denial-of-service (DOS) condition. The IOCs/affe...
Rockwell Automation controllers 输入验证错误漏洞
Rockwell Automation controllers are a series of controllers from Rockwell Automation. A denial of service vulnerability exists in Rockwell Automation controllers, which stems from its controllers mishandling of incorrectly formatted CIP requests, and can be exploited by an attacker to cause a maj...
Schneider Electric Modicon M580 HTTP Request Denial of Service Vulnerability
Summary An exploitable denial of service vulnerability exists in the HTTP request processing of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.70. An appropriately timed HTTP request can cause the device to enter a non-recoverable fault state, resultin...
Schneider Electric Modicon M580 UMAS Read System Coils and Registers Denial of Service Vulnerability
Summary An exploitable denial of service vulnerability exists in the UMAS Read System Coils and Registers functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.80. A specially crafted UMAS command can cause the device to enter a non-recoverab...
Schneider Electric Modicon M580 UMAS function code 0x65 denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the UMAS function code 0x65 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault...
Schneider Electric Modicon M580 UMAS write system bits and blocks denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the UMAS write system bits and blocks functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted set of UMAS commands can cause the device to enter a...
Schneider Electric Modicon M580 UMAS memory block read denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the UMAS memory block read function of the Schneider Electric Modicon M580 programmable automation controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault state,...