CVE-2017-14468

Name of the Vulnerable Software and Affected Versions: Allen Bradley Micrologix 1400 Series B versions 21.2 and before

Description: The issue concerns an access control vulnerability in the data, program, and function file permissions functionality. This vulnerability can be exploited by sending specially crafted packets, which can result in the disclosure of sensitive information, modification of settings, or modification of ladder logic. An attacker can trigger this issue by sending unauthenticated packets. The vulnerability is leveraged in a larger exploit to flash custom firmware, and it requires the Key Switch State to be either REMOTE or PROG.

Recommendations: For Allen Bradley Micrologix 1400 Series B versions 21.2 and before, consider restricting access to the device when the Key Switch State is set to REMOTE or PROG to minimize the risk of exploitation. As a temporary workaround, limit the ability to send unauthenticated packets to the device until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.