Rockwell Automation · Powerflex 525 Ac Drives · CVE-2018-19282
**Name of the Vulnerable Software and Affected Versions**
Rockwell Automation PowerFlex 525 AC Drives versions 5.001 and earlier
**Description**
The issue allows remote attackers to cause a denial of service by crashing the Common Industrial Protocol (CIP) network stack. This can be done in a way that the CIP does not accept new connections, but keeps the current connections active, potentially preventing legitimate users from recovering control.
**Recommendations**
For versions 5.001 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.