PT-2024-5392 · Rockwell Automation · Rockwell Automation 5015-Aenftxt
Published
2024-04-11
·
Updated
2024-09-10
·
CVE-2024-6089
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Rockwell Automation 5015-AENFTXT (affected versions not specified)
Description
The issue is related to an input validation vulnerability. It can be exploited by sending manipulated PTP packets, which may cause the secondary adapter to result in a major nonrecoverable fault, requiring a power cycle to recover the product. This can be done remotely.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rockwell Automation 5015-Aenftxt