PT-2022-3044 · Automationdirect · Directlogic D0-06 Series+3
Sam Hanson
·
Published
2022-06-16
·
Updated
2022-09-06
·
CVE-2022-2004
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
AutomationDirect DirectLOGIC D0-06 series CPUs versions prior to 2.72
Description
The issue is related to an uncontrolled resource consumption in the communication modules H0-ECOM and H0-ECOM100 Ethernet controllers of DirectLOGIC. An attacker can exploit this by sending a specially crafted packet to cause a denial-of-service condition, preventing access from DirectSoft and other devices.
Recommendations
For AutomationDirect DirectLOGIC D0-06 series CPUs versions prior to 2.72, update to version 2.72 or later to resolve the issue.
Fix
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Directlogic D0-06 Series
Directsoft
H0-Ecom
H0-Ecom100