Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockwellautomation rslogix vulnerabilities and exploits
(subscribe to this query)
8.6
CVSSv3
CVE-2016-5814
Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote malicious users to execute arbitrary code via a crafted RSS project file.
Rockwellautomation Rslogix 500 Standard Edition -
Rockwellautomation Rslogix 500 Professional Edition -
Rockwellautomation Rslogix Micro Starter Lite -
Rockwellautomation Rslogix Micro Developer -
Rockwellautomation Rslogix 500 Starter Edition -
NA
CVE-2012-0221
The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspecified function, which allows remote malicious users to cause a denial of service (...
Rockwellautomation Factorytalk Cpr9
Rockwellautomation Rslogix 5000 17
Rockwellautomation Rslogix 5000 18
Rockwellautomation Rslogix 5000 19
Rockwellautomation Rslogix 5000 20
Rockwellautomation Factorytalk Cpr9 Sr5
1 EDB exploit
NA
CVE-2012-0222
The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted packet.
Rockwellautomation Factorytalk Cpr9
Rockwellautomation Rslogix 5000 20
Rockwellautomation Factorytalk Cpr9 Sr5
Rockwellautomation Rslogix 5000 17
Rockwellautomation Rslogix 5000 18
Rockwellautomation Rslogix 5000 19
NA
CVE-2011-3489
RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and previous versions allows remote malicious users to cause a denial of service (crash) via a crafted rna packet with a long string to TCP port 4446 that triggers (1) "a memset zero overflow" or (2) an out...
Rockwellautomation Rslogix
1 EDB exploit
7.5
CVSSv3
CVE-2020-6984
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, The cryptographic function utilized to protect the password in MicroLogix is discoverable.
Rockwellautomation Micrologix 1400 A Firmware
Rockwellautomation Micrologix 1400 B Firmware
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Rslogix 500
3.3
CVSSv3
CVE-2020-6980
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, If Simple Mail Transfer Protocol (SMTP) account data is saved in RSLogix 500, a local attacker wit...
Rockwellautomation Micrologix 1400 A Firmware
Rockwellautomation Micrologix 1400 B Firmware
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Rslogix 500
9.8
CVSSv3
CVE-2020-6990
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, The cryptographic key utilized to help protect the account password is hard coded into the RSLogix...
Rockwellautomation Micrologix 1400 A Firmware
Rockwellautomation Micrologix 1400 B Firmware
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Rslogix 500
7.5
CVSSv3
CVE-2020-6988
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, A remote, unauthenticated attacker can send a request from the RSLogix 500 software to the victim&...
Rockwellautomation Micrologix 1400 A Firmware
Rockwellautomation Micrologix 1400 B Firmware
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Rslogix 500
9.8
CVSSv3
CVE-2010-5305
The potential exists for exposure of the product's password used to restrict unauthorized access to Rockwell PLC5/SLC5/0x/RSLogix 1785-Lx and 1747-L5x controllers. The potential exists for an unauthorized programming and configuration client to gain access to the product and...
Rockwellautomation Rslogix
Rockwellautomation Plc5 1785-lx Firmware -
Rockwellautomation Slc5\\/01 1747-l5x Firmware -
NA
CVE-2014-0755
Rockwell Automation RSLogix 5000 7 up to and including 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive information or modify data via unspecified vectors.
Rockwellautomation Rslogix 5000 Design And Configuration Software 20.01
Rockwellautomation Rslogix 5000 Design And Configuration Software 21.0
Rockwellautomation Rslogix 5000 Design And Configuration Software 18.0
Rockwellautomation Rslogix 5000 Design And Configuration Software 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »