CVE-2023-3596

Name of the Vulnerable Software and Affected Versions Rockwell Automation 1756-EN4* Ethernet/IP communication products Rockwell Automation 1756-EN2T, 1756-EN2TK, 1756-EN2TXT, 1756-EN2TP, 1756-EN2TPK, 1756-EN2TPXT, 1756-EN2TR, 1756-EN2TRK, 1756-EN2TRXT, 1756-EN2F, 1756-EN2FK, 1756-EN3TR, 1756-EN3TRK, 1756-EN4TR, 1756-EN4TRK, 1756-EN4TRXT

Description The issue is related to a buffer overflow in the memory of Rockwell Automation communication modules, which could allow a malicious user to cause a denial of service by sending maliciously crafted CIP messages. This could potentially be exploited by a remote attacker to disrupt the system.

Recommendations For Rockwell Automation 1756-EN4* Ethernet/IP communication products, consider disabling the reception of CIP messages until a patch is available. For Rockwell Automation 1756-EN2T, 1756-EN2TK, 1756-EN2TXT, 1756-EN2TP, 1756-EN2TPK, 1756-EN2TPXT, 1756-EN2TR, 1756-EN2TRK, 1756-EN2TRXT, 1756-EN2F, 1756-EN2FK, 1756-EN3TR, 1756-EN3TRK, 1756-EN4TR, 1756-EN4TRK, 1756-EN4TRXT, restrict access to the communication modules to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.