CVE-2020-6111

Name of the Vulnerable Software and Affected Versions Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 10.000 through Series B FRN 16.000

Description An exploitable denial-of-service issue exists in the IPv4 functionality. A specially crafted packet can cause a major error, resulting in a denial of service. An attacker can send a malicious packet to trigger this issue. The vulnerability is related to errors in number processing.

Recommendations For Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 10.000 through Series B FRN 16.000, consider implementing network traffic filtering to restrict malicious packets. As a temporary workaround, restrict access to the IPv4 functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.