Published: 02/06/2022 Updated: 11/06/2022

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

CVSS v3 Base Score: 8.6 | Impact Score: 4 | Exploitability Score: 3.9

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownload the user project file to bring the device back online.

Vulnerable Product	Search on Vulmon	Subscribe to Product
rockwellautomation compactlogix_5380_firmware
rockwellautomation compact_guardlogix_5380_firmware
rockwellautomation compactlogix_5480_firmware
rockwellautomation controllogix_5580_firmware
rockwellautomation guardlogix_5580_firmware
rockwellautomation compactlogix_5370_firmware
rockwellautomation compact_guardlogix_5370_firmware
rockwellautomation controllogix_5570_firmware
rockwellautomation guardlogix_5570_firmware

CWE-400 https://www.cisa.gov/uscert/ics/advisories/icsa-22-144-01 https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135559 https://nvd.nist.gov https://www.cisa.gov/uscert/ics/advisories/icsa-22-144-01

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-1797

Vulnerability Summary

Vulnerability Trend

ICS Advisories

References

Vulmon Search

About

Products

Connect