Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockwellautomation controllogix vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2009-0474
The web interface in the Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Module allows remote malicious users to obtain "internal web page information" and "internal information about the module" via unspecified vectors. NOTE: this may overlap ...
Rockwellautomation Controllogix 1756-enbt\\/a Ethernet\\/ Ip Bridge -
7.5
CVSSv2
CVE-2022-1161
An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Control systems. Studio 5000 Logix Designer writes user-readable program code to a separate location than the executed compiled code, allowing an ...
Rockwellautomation Compactlogix 1768-l43 Firmware
Rockwellautomation Compactlogix 1768-l45 Firmware
Rockwellautomation Compactlogix 1769-l31 Firmware
Rockwellautomation Compactlogix 1769-l32c Firmware
Rockwellautomation Compactlogix 1769-l32e Firmware
Rockwellautomation Compactlogix 1769-l35cr Firmware
Rockwellautomation Compactlogix 1769-l35e Firmware
Rockwellautomation Compactlogix 5370 L3 Firmware
Rockwellautomation Compactlogix 5370 L2 Firmware
Rockwellautomation Compactlogix 5370 L1 Firmware
Rockwellautomation Compactlogix 5380 Firmware
Rockwellautomation Compactlogix 5480 Firmware
Rockwellautomation Compact Guardlogix 5370 Firmware
Rockwellautomation Compact Guardlogix 5380 Firmware
Rockwellautomation Controllogix 5550 Firmware
Rockwellautomation Controllogix 5560 Firmware
Rockwellautomation Controllogix 5570 Firmware
Rockwellautomation Controllogix 5580 Firmware
Rockwellautomation Guardlogix 5560 Firmware
Rockwellautomation Guardlogix 5570 Firmware
Rockwellautomation Guardlogix 5580 Firmware
Rockwellautomation Flexlogix 1794-l34 Firmware
7.1
CVSSv2
CVE-2017-6024
A Resource Exhaustion issue exists in Rockwell Automation ControlLogix 5580 controllers V28.011, V28.012, and V28.013; ControlLogix 5580 controllers V29.011; CompactLogix 5380 controllers V28.011; and CompactLogix 5380 controllers V29.011. This vulnerability may allow an maliciou...
Rockwellautomation Compactlogix 5380 Firmware V28.011
Rockwellautomation Compactlogix 5380 Firmware V29.011
Rockwellautomation Controllogix 5580 Firmware V29.011
Rockwellautomation Controllogix 5580 Firmware V28.012
Rockwellautomation Controllogix 5580 Firmware V28.011
Rockwellautomation Controllogix 5580 Firmware V28.013
NA
CVE-2020-6998
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an malicious user to send specially crafted ...
Rockwellautomation Armor Compact Guardlogix 5370 Firmware
Rockwellautomation Compact Guardlogix 5370 Firmware
Rockwellautomation Compactlogix 5370 L1 Firmware
Rockwellautomation Compactlogix 5370 L2 Firmware
Rockwellautomation Compactlogix 5370 L3 Firmware
Rockwellautomation Controllogix 5570 Firmware
Rockwellautomation Guardlogix 5560 Firmware
Rockwellautomation Guardlogix 5570 Firmware
Rockwellautomation Guardlogix 5580 Firmware
NA
CVE-2022-3157
A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non-recoverable fault (MNRF) and a denial-of-service condition (DOS).
Rockwellautomation Compactlogix 5370 Firmware
Rockwellautomation Compact Guardlogix 5370 Firmware
Rockwellautomation Compact Guardlogix 5380 Firmware
Rockwellautomation Controllogix 5570 Firmware
Rockwellautomation Controllogix 5570 Redundancy Firmware
Rockwellautomation Guardlogix 5570 Firmware
NA
CVE-2023-3595
Where this vulnerability exists in the Rockwell Automation 1756 EN2* and 1756 EN3* ControlLogix communication products, it could allow a malicious user to perform remote code execution with persistence on the target system through maliciously crafted CIP messages. This includes ...
Rockwellautomation 1756-en2f Series A Firmware -
Rockwellautomation 1756-en2f Series B Firmware -
Rockwellautomation 1756-en2f Series C Firmware -
Rockwellautomation 1756-en2t Series A Firmware -
Rockwellautomation 1756-en2t Series B Firmware -
Rockwellautomation 1756-en2t Series C Firmware -
Rockwellautomation 1756-en2t Series D Firmware -
Rockwellautomation 1756-en2tr Series A Firmware -
Rockwellautomation 1756-en2tr Series B Firmware -
Rockwellautomation 1756-en2tr Series C Firmware -
Rockwellautomation 1756-en3tr Series A Firmware -
Rockwellautomation 1756-en3tr Series B Firmware -
1 Article
7.8
CVSSv2
CVE-2018-17924
Rockwell Automation MicroLogix 1400 Controllers and 1756 ControlLogix Communications Modules An unauthenticated, remote threat actor could send a CIP connection request to an affected device, and upon successful connection, send a new IP configuration to the affected device even ...
Rockwellautomation Micrologix 1400 Firmware -
Rockwellautomation 1756-enbt Firmware -
Rockwellautomation 1756-eweb Series A Firmware -
Rockwellautomation 1756-eweb Series B Firmware -
Rockwellautomation 1756-en2f Series A Firmware -
Rockwellautomation 1756-en2f Series B Firmware -
Rockwellautomation 1756-en2f Series C Firmware
Rockwellautomation 1756-en2t Series A Firmware -
Rockwellautomation 1756-en2t Series B Firmware -
Rockwellautomation 1756-en2t Series C Firmware -
Rockwellautomation 1756-en2t Series D Firmware
Rockwellautomation 1756-en2tr Series A Firmware -
Rockwellautomation 1756-en2tr Series B Firmware -
Rockwellautomation 1756-en2tr Series C Firmware
Rockwellautomation 1756-en3tr Series A Firmware -
Rockwellautomation 1756-en3tr Series B Firmware
1 Github repository
7.5
CVSSv2
CVE-2021-22681
Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are communicating with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogi...
Rockwellautomation Factorytalk Services Platform
Rockwellautomation Rslogix 5000
Rockwellautomation Studio 5000 Logix Designer
1 Article
NA
CVE-2024-21916
A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.
Rockwellautomation Controllogix 5570 Controller Firmware 20.011
Rockwellautomation Guardlogix 5570 Controller Firmware 20.011
Rockwellautomation Controllogix 5570 Redundant Controller Firmware 20.054 Kit1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2