CVE-2020-6998
- EPSS 0.49%
- Veröffentlicht 27.07.2022 21:15:08
- Zuletzt bearbeitet 17.04.2025 16:15:21
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to...
CVE-2022-1161
- EPSS 0.12%
- Veröffentlicht 11.04.2022 20:15:18
- Zuletzt bearbeitet 21.11.2024 06:40:09
An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Control systems. Studio 5000 Logix Designer writes user-readable program code to a separate location than the execut...
CVE-2019-10952
- EPSS 0.58%
- Veröffentlicht 01.05.2019 20:29:00
- Zuletzt bearbeitet 21.11.2024 04:20:13
An attacker could send a crafted HTTP/HTTPS request to render the web server unavailable and/or lead to remote code execution caused by a stack-based buffer overflow vulnerability. A cold restart is required for recovering CompactLogix 5370 L1, ...
CVE-2019-10954
- EPSS 0.04%
- Veröffentlicht 01.05.2019 19:29:00
- Zuletzt bearbeitet 21.11.2024 04:20:13
An attacker could send crafted SMTP packets to cause a denial-of-service condition where the controller enters a major non-recoverable faulted state (MNRF) in CompactLogix 5370 L1, L2, and L3 Controllers, Compact GuardLogix 5370 controllers, and Armo...
CVE-2019-10955
- EPSS 2.99%
- Veröffentlicht 25.04.2019 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:20:13
In Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earlier, MicroLogix 1100 Controllers v14.00 and earlier, CompactLogix 5370 L1 controllers v30.014 and earlier, CompactLogix 5370 L2 controllers v30.014 an...