PT-2024-6546 · Rockwell Automation · Controllogix/Guardlogix 5580+1
Published
2024-09-12
·
Updated
2024-09-19
·
CVE-2024-6077
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions:
Rockwell Automation ControlLogix/GuardLogix 5580 versions prior to the fixed version
Rockwell Automation CompactLogix/Compact GuardLogix 5380 versions prior to the fixed version
Description:
A denial-of-service issue exists in Rockwell Automation products when specially crafted packets are sent to the
CIP Security Object. If exploited, the device will become unavailable and require a factory reset to recover. The vulnerability is related to errors in processing input data, which can allow a remote attacker to cause a denial-of-service.Recommendations:
For Rockwell Automation ControlLogix/GuardLogix 5580, update to a version that includes the fix for this issue.
For Rockwell Automation CompactLogix/Compact GuardLogix 5380, update to a version that includes the fix for this issue.
As a temporary workaround, consider restricting access to the
CIP Security Object to minimize the risk of exploitation.Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Compactlogix/Compact Guardlogix 5380
Controllogix/Guardlogix 5580