Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-3752

Published: 19/12/2022 Updated: 07/11/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0

Vulnerability Summary

An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownload the user project file to bring the device back online and continue normal operation.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

rockwellautomation compactlogix_5480_firmware

rockwellautomation compactlogix_5580_firmware

rockwellautomation guardlogix_5580_firmware

rockwellautomation compact_guardlogix_5380_firmware

rockwellautomation compactlogix_5380_firmware

ICS Advisories

Rockwell Automation Logix controllers

References

NVD-CWE-noinfohttps://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1137664https://nvd.nist.govhttps://www.cisa.gov/uscert/ics/advisories/icsa-22-342-03
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
injectCVE-2024-34001CVE-2024-37018LFICVE-2024-1275CVE-2024-1086CSRFCVE-2024-31030CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook