7.1
CVE-2025-24478
- EPSS 0.11%
- Published 28.01.2025 19:15:14
- Last modified 28.01.2025 19:15:14
- Source PSIRT@rockwellautomation.com
- Teams watchlist Login
- Open Login
A denial-of-service vulnerability exists in the affected products. The vulnerability could allow a remote, non-privileged user to send malicious requests resulting in a major nonrecoverable fault causing a denial-of-service.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
VendorRockwell Automation
≫
Product
GuardLogix 5580 SIL 3
Default Statusunaffected
Version
33.011
Status
affected
Version
33.012
Status
affected
Version
33.015
Status
affected
Version
34.011
Status
affected
Version
35.011
Status
affected
VendorRockwell Automation
≫
Product
Compact GuardLogix 5380 SIL 3
Default Statusunaffected
Version
33.011
Status
affected
Version
33.012
Status
affected
Version
33.015
Status
affected
Version
34.011
Status
affected
Version
35.011
Status
affected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.11% | 0.3 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| PSIRT@rockwellautomation.com | 7.1 | 0 | 0 |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
CWE-755 Improper Handling of Exceptional Conditions
The product does not handle or incorrectly handles an exceptional condition.