Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2021/08/10 12:0 a.m.37 views

Rockwellautomation Rslogix Insufficiently Protected Credentials

Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are communicating with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730,...

7.5CVSS3.7AI score0.25455EPSS
Exploits1References2
NVD
NVD
added 2021/03/03 6:15 p.m.19 views

CVE-2021-22681

Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are communicating with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730,...

9.8CVSS0.25455EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/03/03 5:59 p.m.51 views

CVE-2021-22681

Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are communicating with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730,...

9.7AI score0.25455EPSS
Exploits1References1
CVE
CVE
added 2021/03/03 5:59 p.m.139 views

CVE-2021-22681

CVE-2021-22681 affects Rockwell Automation Studio 5000 Logix Designer (versions 21+) and RSLogix 5000 (16–20). The issue is “Insufficiently Protected Credentials” (CWE-522): an unauthenticated attacker could bypass the verification key used to confirm Logix controller communication and authentica...

9.8CVSS9.4AI score0.25455EPSS
In wildExploits1References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.14 views

Rockwell Automation RSLogix 5000 Application Detection

Binary data 752216.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.14 views

Rockwell Automation RSLogix 5000 17 <= 20 DOS

Binary data 720212.prm...

5CVSS7AI score0.03574EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.13 views

Rockwell Automation RSLogix 5000 <= 21 .ACD File Password Protection Failure

Binary data 720213.prm...

6.9CVSS7AI score0.00563EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.15 views

Rockwell Automation RSLogix 5000 17 <= 20 Function Return Value DOS

Binary data 720211.prm...

5CVSS7.3AI score0.10324EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2019/01/24 12:0 a.m.2 views

Rockwell RSLogix 5000 RNA Denial of Service (CVE-2011-3489)

A denial of service vulnerability exists in Rockwell RSLogix 5000. A remote attacker could exploit this vulnerability by sending a specially crafted request to the target system...

5CVSS5.2AI score0.08977EPSS
Exploits1
ICS
ICS
added 2014/10/24 6:0 a.m.115 views

Rockwell RSLogix 5000 Password Vulnerability

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on January 21, 2014, and is now being released to the NCCIC/ICS-CERT Web site. Independent researcher Stephen Dunlap has identified a password vulnerability in the Rockwell Automation RSLogix 5000 software. Rockwell...

6.9CVSS5.9AI score0.00563EPSS
Exploits0References10
NVD
NVD
added 2014/02/05 5:15 a.m.17 views

CVE-2014-0755

Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files aka project files, which allows local users to obtain sensitive information or modify data via unspecified vectors...

6.9CVSS6AI score0.00563EPSS
Exploits0References6
Prion
Prion
added 2014/02/05 5:15 a.m.13 views

Design/Logic Flaw

Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files aka project files, which allows local users to obtain sensitive information or modify data via unspecified vectors...

6.9CVSS6.5AI score0.00563EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2014/02/05 2:0 a.m.20 views

CVE-2014-0755 Rockwell RSLogix 5000 Insufficiently Protected Credentials

Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files aka project files, which allows local users to obtain sensitive information or modify data via unspecified vectors...

6.3CVSS6AI score0.00563EPSS
Exploits0References5
CVE
CVE
added 2014/02/05 2:0 a.m.47 views

CVE-2014-0755

The CVE-2014-0755 issue affects Rockwell Automation RSLogix 5000 software, specifically project files (.ACD) created with RSLogix 5000 versions 7 through 20.01 and version 21.0. The vulnerability is due to insufficient protection of credentials in these password-protected files, enabling a local ...

6.9CVSS6.1AI score0.00563EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2012/04/02 6:55 p.m.12 views

Out-of-bounds

The FactoryTalk FT RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 allows remote attackers to cause a denial of service out-of-bounds read via a crafted packet...

5CVSS7AI score0.03574EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2012/04/02 6:55 p.m.18 views

Design/Logic Flaw

The FactoryTalk FT RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspecified function, which allows remote attackers to cause a denial of service service outage via a craft...

5CVSS7.1AI score0.10324EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2012/04/02 6:0 p.m.23 views

CVE-2012-0221

The FactoryTalk FT RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspecified function, which allows remote attackers to cause a denial of service service outage via a craft...

6.5AI score0.10324EPSS
Exploits0References2
Cvelist
Cvelist
added 2012/04/02 6:0 p.m.29 views

CVE-2012-0222

The FactoryTalk FT RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 allows remote attackers to cause a denial of service out-of-bounds read via a crafted packet...

6.4AI score0.03574EPSS
Exploits0References2
CVE
CVE
added 2012/04/02 6:0 p.m.56 views

CVE-2012-0222

CVE-2012-0222 affects Rockwell Automation’s FactoryTalk RNADiagReceiver (CPR9 up to SR5; RSLogix 5000 17–20). A remote attacker can induce a DoS via a crafted packet, triggering an out-of-bounds read in the RNADiagReceiver service (listening on UDP/Port 4445 per advisory updates). Connected docum...

5CVSS6.6AI score0.03574EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2012/04/02 6:0 p.m.57 views

CVE-2012-0221

The CVE-2012-0221 entry affects Rockwell Automation’s FactoryTalk RNADiagReceiver service (CPR9 up to CPR9 SR5; RSLogix 5000 v17–20). A vulnerability in how the service handles the return value from an unspecified function can be triggered by a crafted UDP packet to RNADiagReceiver (port 4445), c...

5CVSS6.7AI score0.10324EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder