An attacker could send a crafted HTTP/HTTPS request to render the web server unavailable and/or lead to remote code execution caused by a stack-based buffer overflow vulnerability. A cold restart is required for recovering CompactLogix 5370 L1, L2, and L3 Controllers, Compact GuardLogix 5370 controllers, and Armor Compact GuardLogix 5370 Controllers Versions 20 - 30 and earlier.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HRockwellautomation Armor Compact Guardlogix 5370
HWRockwellautomationwszystkie wersjeRockwellautomation Armor Compact Guardlogix 5370 Firmware
OSRockwellautomation20.011 – 30.014Rockwellautomation Compactlogix 5370 L1
HWRockwellautomationwszystkie wersjeRockwellautomation Compactlogix 5370 L1 Firmware
OSRockwellautomation20.011 – 30.014Rockwellautomation Compactlogix 5370 L2
HWRockwellautomationwszystkie wersjeRockwellautomation Compactlogix 5370 L2 Firmware
OSRockwellautomation20.011 – 30.014Rockwellautomation Compactlogix 5370 L3
HWRockwellautomationwszystkie wersjeRockwellautomation Compactlogix 5370 L3 Firmware
OSRockwellautomation20.011 – 30.014
Powiązane podatności
An attacker with the ability to modify a user program may change user program code on some ControlLogix, Compa...
An attacker could send crafted SMTP packets to cause a denial-of-service condition where the controller enters...
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 ve...
In Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earlier, Micro...
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in...