Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockwellautomation vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-3596
Where this vulnerability exists in the Rockwell Automation 1756-EN4* Ethernet/IP communication products, it could allow a malicious user to cause a denial of service by asserting the target system through maliciously crafted CIP messages.
Rockwellautomation 1756-en4tr Firmware -
Rockwellautomation 1756-en4trk Firmware -
Rockwellautomation 1756-en4trxt Firmware -
7.1
CVSSv2
CVE-2012-4690
Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote malicious users to cause a denial of service via messages that trigger modification of s...
Rockwellautomation Ab Micrologix Controller 1200
Rockwellautomation Ab Micrologix Controller 1500
Rockwellautomation Plc-5 Controller -
Rockwellautomation Slc 500 Controller -
Rockwellautomation Ab Micrologix Controller 1400
Rockwellautomation Ab Micrologix Controller 1100
9.3
CVSSv2
CVE-2016-5814
Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote malicious users to execute arbitrary code via a crafted RSS project file.
Rockwellautomation Rslogix 500 Standard Edition -
Rockwellautomation Rslogix 500 Professional Edition -
Rockwellautomation Rslogix Micro Starter Lite -
Rockwellautomation Rslogix Micro Developer -
Rockwellautomation Rslogix 500 Starter Edition -
NA
CVE-2023-29022
A cross site scripting vulnerability exists in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially...
Rockwellautomation Armorstart St 284ee Firmware -
Rockwellautomation Armorstart St 281e Firmware -
NA
CVE-2023-29023
A cross site scripting vulnerability exists in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user to view and modify sensitive data or make the web page unavailable. User interaction, such as a phishing attack, is required for successf...
Rockwellautomation Armorstart St 284ee Firmware -
Rockwellautomation Armorstart St 281e Firmware -
NA
CVE-2023-29027
A cross site scripting vulnerability exists in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially...
Rockwellautomation Armorstart St 284ee Firmware -
Rockwellautomation Armorstart St 281e Firmware -
NA
CVE-2023-29028
A cross site scripting vulnerability exists in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially...
Rockwellautomation Armorstart St 284ee Firmware -
Rockwellautomation Armorstart St 281e Firmware -
5
CVSSv2
CVE-2021-32926
When an authenticated password change request takes place, this vulnerability could allow the malicious user to intercept the message that includes the legitimate, new password hash and replace it with an illegitimate hash. The user would no longer be able to authenticate to the ...
Rockwellautomation Micro800 Firmware
Rockwellautomation Micrologix 1400 Firmware
NA
CVE-2022-2179
The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks.
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Micrologix 1400 Firmware
NA
CVE-2023-29024
A cross site scripting vulnerability exists in Rockwell Automation's ArmorStart ST product A cross site scripting vulnerability exists that could potentially allow a malicious user to view and modify sensitive data or make the web page unavailable. User interaction, such as...
Rockwellautomation Armorstart St 284ee Firmware -
Rockwellautomation Armorstart St 281e Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »