Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2024-5990

Summary
Assigner-Rockwell
Assigner Org ID-b73dd486-f505-4403-b634-40b078b177f0
Published At-25 Jun, 2024 | 16:11
Updated At-27 Aug, 2025 | 20:42
Rejected At-
Credits

ThinManager® ThinServer™ Improper Input Validation Vulnerability

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to a monitor thread within Rockwell Automation ThinServer™ and cause a denial-of-service condition on the affected device.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:Rockwell
Assigner Org ID:b73dd486-f505-4403-b634-40b078b177f0
Published At:25 Jun, 2024 | 16:11
Updated At:27 Aug, 2025 | 20:42
Rejected At:
▼CVE Numbering Authority (CNA)
ThinManager® ThinServer™ Improper Input Validation Vulnerability

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to a monitor thread within Rockwell Automation ThinServer™ and cause a denial-of-service condition on the affected device.

Affected Products
Vendor
Rockwell Automation, Inc.Rockwell Automation
Product
ThinManager® ThinServer™
Default Status
unaffected
Versions
Affected
  • 11.1.0
  • 11.2.0
  • 12.0.0
  • 12.1.0
  • 13.0.0
  • 13.1.0
Problem Types
TypeCWE IDDescription
CWECWE-20CWE-20 Improper Input Validation
Type: CWE
CWE ID: CWE-20
Description: CWE-20 Improper Input Validation
Metrics
VersionBase scoreBase severityVector
4.08.7HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Version: 4.0
Base score: 8.7
Base severity: HIGH
Vector:
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-153CAPEC-153 Input Data Manipulation
CAPEC ID: CAPEC-153
Description: CAPEC-153 Input Data Manipulation
Solutions

Affected Product CVE First Known in software version Corrected in software version ( Available Here https://thinmanager.com/downloads/index.php ) ThinManager® ThinServer™ 2024-5988 2024-5989           11.1.0 11.2.0 12.0.0 12.1.0 13.0.0 13.1.0 13.2.0 11.1.8 https://thinmanager.com/downloads/index.php 11.2.9 https://thinmanager.com/downloads/index.php 12.0.7 https://thinmanager.com/downloads/index.php 12.1.8 https://thinmanager.com/downloads/index.php 13.0.5 https://thinmanager.com/downloads/index.php 13.1.3 https://thinmanager.com/downloads/index.php 13.2.2 https://thinmanager.com/downloads/index.php 2024-5990 11.1.0 11.2.0 12.0.0 12.1.0 13.0.0 13.1.0 11.1.8 https://thinmanager.com/downloads/index.php 11.2.9 https://thinmanager.com/downloads/index.php 12.0.7 https://thinmanager.com/downloads/index.php 12.1.8 https://thinmanager.com/downloads/index.php 13.0.4 https://thinmanager.com/downloads/index.php 13.1.2 https://thinmanager.com/downloads/index.php Customers using the affected software are encouraged to apply the risk mitigations from the list below, if possible. Additionally, we encourage customers to implement our suggested security best practices to minimize the potential risk of vulnerability. ·Update to the corrected software versions via the ThinManager® Downloads Site https://thinmanager.com/downloads/index.php ·Limit remote access for TCP Port 2031 to known thin clients and ThinManager® servers. · Security Best Practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.html
N/A
Hyperlink: https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.html
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Vendor
Rockwell Automation, Inc.rockwellautomation
Product
thinmanager
CPEs
  • cpe:2.3:a:rockwellautomation:thinmanager:11.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:11.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.1.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 11.1.0 before 11.1.8 (custom)
  • From 11.2.0 before 11.2.9 (custom)
  • From 12.0.0 before 12.0.7 (custom)
  • From 12.1.0 before 12.1.8 (custom)
  • From 13.0.0 before 13.0.4 (custom)
  • From 13.1.0 before 13.1.2 (custom)
Vendor
Rockwell Automation, Inc.rockwellautomation
Product
thinmanager
CPEs
  • cpe:2.3:a:rockwellautomation:thinmanager:11.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:11.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.1.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 11.1.0 before 11.1.8 (custom)
  • From 11.2.0 before 11.2.9 (custom)
  • From 12.0.0 before 12.0.7 (custom)
  • From 12.1.0 before 12.1.8 (custom)
  • From 13.0.0 before 13.0.4 (custom)
  • From 13.1.0 before 13.1.2 (custom)
Vendor
Rockwell Automation, Inc.rockwellautomation
Product
thinmanager
CPEs
  • cpe:2.3:a:rockwellautomation:thinmanager:11.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:11.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.1.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 11.1.0 before 11.1.8 (custom)
  • From 11.2.0 before 11.2.9 (custom)
  • From 12.0.0 before 12.0.7 (custom)
  • From 12.1.0 before 12.1.8 (custom)
  • From 13.0.0 before 13.0.4 (custom)
  • From 13.1.0 before 13.1.2 (custom)
Vendor
Rockwell Automation, Inc.rockwellautomation
Product
thinmanager
CPEs
  • cpe:2.3:a:rockwellautomation:thinmanager:11.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:11.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.1.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 11.1.0 before 11.1.8 (custom)
  • From 11.2.0 before 11.2.9 (custom)
  • From 12.0.0 before 12.0.7 (custom)
  • From 12.1.0 before 12.1.8 (custom)
  • From 13.0.0 before 13.0.4 (custom)
  • From 13.1.0 before 13.1.2 (custom)
Vendor
Rockwell Automation, Inc.rockwellautomation
Product
thinmanager
CPEs
  • cpe:2.3:a:rockwellautomation:thinmanager:11.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:11.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.1.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 11.1.0 before 11.1.8 (custom)
  • From 11.2.0 before 11.2.9 (custom)
  • From 12.0.0 before 12.0.7 (custom)
  • From 12.1.0 before 12.1.8 (custom)
  • From 13.0.0 before 13.0.4 (custom)
  • From 13.1.0 before 13.1.2 (custom)
Vendor
Rockwell Automation, Inc.rockwellautomation
Product
thinmanager
CPEs
  • cpe:2.3:a:rockwellautomation:thinmanager:11.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:11.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:rockwellautomation:thinmanager:13.1.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 11.1.0 before 11.1.8 (custom)
  • From 11.2.0 before 11.2.9 (custom)
  • From 12.0.0 before 12.0.7 (custom)
  • From 12.1.0 before 12.1.8 (custom)
  • From 13.0.0 before 13.0.4 (custom)
  • From 13.1.0 before 13.1.2 (custom)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.html
x_transferred
Hyperlink: https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.html
Resource:
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:PSIRT@rockwellautomation.com
Published At:25 Jun, 2024 | 16:15
Updated At:25 Jun, 2024 | 18:50

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to a monitor thread within Rockwell Automation ThinServer™ and cause a denial-of-service condition on the affected device.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
CPE Matches

Weaknesses
CWE IDTypeSource
CWE-20SecondaryPSIRT@rockwellautomation.com
CWE ID: CWE-20
Type: Secondary
Source: PSIRT@rockwellautomation.com
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.htmlPSIRT@rockwellautomation.com
N/A
Hyperlink: https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.html
Source: PSIRT@rockwellautomation.com
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

84Records found

CVE-2024-7515
Matching Score-10
Assigner-Rockwell Automation
ShareView Details
Matching Score-10
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.52% / 40.15%
||
7 Day CHG~0.00%
Published-14 Aug, 2024 | 19:40
Updated-04 Mar, 2025 | 17:11
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation

CVE-2024-7515 IMPACT A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-compactlogix_5480compactlogix_5380controllogix_5580_firmwarecontrollogix_5580compact_guardlogix_5380_sil_3_firmwarecompact_guardlogix_5380_sil_3compactlogix_5380_firmwarecompact_guardlogix_5380_sil_2_firmwareguardlogix_5580_firmwarecompactlogix_5480_firmwareguardlogix_5580compact_guardlogix_5380_sil_2Compact GuardLogix 5380 (5069 – L3zS2)CompactLogix 5480 (5069-L4)ControlLogix® 5580 (1756- L8z)GuardLogix 5580 (1756- L8zS)CompactLogix 5380 (5069-L3z)controllogix_5580_firmwarecompactlogix_5480_firmwarecompactlogix_5380_firmwareguardlogix_5580_firmwarecompact_guardlogix_5380_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2024-7507
Matching Score-10
Assigner-Rockwell Automation
ShareView Details
Matching Score-10
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.50% / 39.12%
||
7 Day CHG~0.00%
Published-14 Aug, 2024 | 19:35
Updated-04 Mar, 2025 | 17:11
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Controller Denial-of-Service Vulnerability via Input Validation

CVE-2024-7507 IMPACT A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-compactlogix_5480compactlogix_5380controllogix_5580_firmwarecontrollogix_5580compact_guardlogix_5380_sil_3_firmwarecompact_guardlogix_5380_sil_3compactlogix_5380_firmwarecompact_guardlogix_5380_sil_2_firmwareguardlogix_5580_firmwarecompactlogix_5480_firmwareguardlogix_5580compact_guardlogix_5380_sil_2CompactLogix 5380 (5069 – L3z)CompactLogix 5480 (5069-L4)Compact GuardLogix 5380 (5069- L3zS2)GuardLogix 5580 (1756-L8z)ControlLogix® 5580 (1756 –L8z)controllogix_5580_firmwarecompactlogix_5480_firmwareguardlogix_5580_firmwarecontrollogix_5380_firmwarecompact_guardlogix_5380_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2024-6436
Matching Score-10
Assigner-Rockwell Automation
ShareView Details
Matching Score-10
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.60% / 44.62%
||
7 Day CHG~0.00%
Published-27 Sep, 2024 | 19:45
Updated-22 Oct, 2025 | 20:29
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation Input Validation Vulnerability exists in the SequenceManager™ Server

An input validation vulnerability exists in the Rockwell Automation Sequence Manager™ which could allow a malicious user to send malformed packets to the server and cause a denial-of-service condition. If exploited, the device would become unresponsive, and a manual restart will be required for recovery. Additionally, if exploited, there could be a loss of view for the downstream equipment sequences in the controller. Users would not be able to view the status or command the equipment sequences, however the equipment sequence would continue to execute uninterrupted.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-sequencemanagerSequenceManager™sequencemanager
CWE ID-CWE-20
Improper Input Validation
CVE-2024-6207
Matching Score-10
Assigner-Rockwell Automation
ShareView Details
Matching Score-10
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.52% / 40.58%
||
7 Day CHG~0.00%
Published-14 Oct, 2024 | 20:53
Updated-21 Oct, 2024 | 13:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and send a specially crafted CIP message to the device. If exploited, a threat actor could help prevent access to the legitimate user and end connections to connected devices including the workstation. To recover the controllers, a download is required which ends any process that the controller is running.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-compactlogix_5380compact_guardlogix_5380_sil_2_firmwarecontrollogix_5580controllogix_5580_process_firmwarefactorytalk_logix_echo_firmwareguardlogix_5580compact_guardlogix_5380_sil_2compactlogix_5480_firmwarecompactlogix_5380_firmwarecompact_guardlogix_5380_sil_3compact_guardlogix_5380_sil_3_firmwarefactorytalk_logix_echocontrollogix_5580_processcontrollogix_5580_firmwareguardlogix_5580_firmwarecompactlogix_5480CompactLogix 5380ControlLogix® 5580 ProcessControlLogix® 5580Compact GuardLogix 5380 SIL 3FactoryTalk® Logix EchoCompactLogix 5480GuardLogix 5580Compact GuardLogix 5380 SIL 2factorytalk_logix_echocompact_guardlogix_5380_sil3_firmwarecontrollogix_5580_process_firmwarecompactlogix_5380_firmwareguardlogix_5580_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2024-6077
Matching Score-10
Assigner-Rockwell Automation
ShareView Details
Matching Score-10
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.56% / 42.65%
||
7 Day CHG~0.00%
Published-12 Sep, 2024 | 19:59
Updated-19 Sep, 2024 | 14:31
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP

A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-compactlogix_5380compact_guardlogix_5380_sil_2_firmware1756-en41756-en4_firmwarecontrollogix_5580controllogix_5580_firmwarecompact_guardlogix_5380_sil_2compactlogix_5480_firmwareguardlogix_5580compactlogix_5380_firmwarecompactlogix_5480guardlogix_5580_firmwarecompact_guardlogix_5380_sil_3compact_guardlogix_5380_sil_3_firmwareCompactLogix 5380ControlLogix® 5580 Process1756-EN4ControlLogix® 5580Compact GuardLogix 5380 SIL 3Compact GuardLogix 5380 SIL 2CompactLogix 5380 ProcessGuardLogix 5580CompactLogix 5480compact_guardlogix_5380_sil2_firmwarecompactlogix_5380_process_firmware1756-en4_firmwarecompactlogix_5480_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2025-9066
Matching Score-10
Assigner-Rockwell Automation
ShareView Details
Matching Score-10
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.41% / 33.42%
||
7 Day CHG~0.00%
Published-14 Oct, 2025 | 12:15
Updated-14 Oct, 2025 | 19:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FactoryTalk® ViewPoint XXE to Denial-of-Service Vulnerability

A security issue was discovered within FactoryTalk® ViewPoint, allowing unauthenticated attackers to achieve XXE. Certain SOAP requests can be abused to perform XXE, resulting in a temporary denial-of-service.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-FactoryTalk ViewPoint
CWE ID-CWE-20
Improper Input Validation
CVE-2024-45825
Matching Score-10
Assigner-Rockwell Automation
ShareView Details
Matching Score-10
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.52% / 40.15%
||
7 Day CHG~0.00%
Published-12 Sep, 2024 | 14:28
Updated-02 Oct, 2024 | 14:43
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
5015-U8IHFT Denial-of-Service Vulnerability via CIP Message

CVE-2024-45825 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-5015-u8ihft5015-u8ihft_firmware5015-U8IHFT5015-u8ihft_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2025-14027
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.35% / 27.18%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:56
Updated-26 Jan, 2026 | 15:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation Recommends Upgrading From 1756-RM2 XT To 1756-RM3 XT

Multiple denial-of-service vulnerabilities exist in the affected product. These issues can be triggered through various crafted inputs, including malformed Class 3 messages, memory leak conditions, and other resource exhaustion scenarios. Exploitation may cause the device to become unresponsive and, in some cases, result in a major nonrecoverable fault. Recovery may require a restart.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-ControlLogix® Redundancy Enhanced Module
CWE ID-CWE-401
Missing Release of Memory after Effective Lifetime
CVE-2025-13824
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.31% / 23.23%
||
7 Day CHG~0.00%
Published-15 Dec, 2025 | 15:20
Updated-15 Dec, 2025 | 18:22
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Micro820®, Micro850®, Micro870® – Specialized Fuzzing Vulnerabilities

A security issue exists due to improper handling of malformed CIP packets during fuzzing. The controller enters a hard fault with solid red Fault LED and becomes unresponsive. Upon power cycle, the controller will enter recoverable fault where the MS LED and Fault LED become flashing red and reports fault code 0xF019. To recover, clear the fault.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-Micro820®, Micro850®, Micro870®
CWE ID-CWE-763
Release of Invalid Pointer or Reference
CVE-2025-11694
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.17% / 6.66%
||
7 Day CHG~0.00%
Published-16 Jun, 2026 | 13:39
Updated-16 Jun, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation CompactLogix 5370 Controllers – Multiple Vulnerabilities

A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attacker to abuse the exposed Connection ID’s visible on the web interface to perform denial-of-service attacks, resulting in a minor fault.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-CompactLogix 5370
CWE ID-CWE-354
Improper Validation of Integrity Check Value
CVE-2025-9282
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.51% / 39.97%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:59
Updated-02 Feb, 2026 | 18:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles Comprehensive limited storm tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9437
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.34% / 26.50%
||
7 Day CHG~0.00%
Published-14 Oct, 2025 | 12:13
Updated-14 Oct, 2025 | 19:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ArmorStart® AOP Denial-of-Service Vulnerability

A security issue exists within the Studio 5000 Logix Designer add-on profile (AOP) for the ArmorStart Classic distributed motor controller, resulting in denial-of-service. This vulnerability is possible due to the input of invalid values into Component Object Model (COM) methods.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-ArmorStart AOP
CWE ID-CWE-755
Improper Handling of Exceptional Conditions
CVE-2024-40619
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.58% / 43.30%
||
7 Day CHG~0.00%
Published-14 Aug, 2024 | 19:52
Updated-31 Jan, 2025 | 15:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation GuardLogix/ControlLogix 5580 Controller denial-of-service Vulnerability via Malformed Packet Handling

CVE-2024-40619 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-guardlogix_5580_firmwarecontrollogix_5580controllogix_5580_firmwareguardlogix_5580GuardLogix 5580ControlLogix® 5580controllogix_5580_firmwareguardlogix_5580_firmware
CWE ID-CWE-754
Improper Check for Unusual or Exceptional Conditions
CVE-2024-10387
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-7.97% / 94.04%
||
7 Day CHG~0.00%
Published-25 Oct, 2024 | 17:04
Updated-05 Nov, 2024 | 20:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FactoryTalk ThinManager Denial-of-Service Vulnerability

CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor with network access to send crafted messages to the device, potentially resulting in Denial-of-Service.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-thinmanagerFactoryTalk ThinManagerthinmanager
CWE ID-CWE-125
Out-of-bounds Read
CVE-2026-11317
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.30% / 21.87%
||
7 Day CHG~0.00%
Published-16 Jun, 2026 | 13:10
Updated-16 Jun, 2026 | 15:26
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation Logix 5370 and 5570 Controllers Vulnerable To Denial of Service Via CIP

A denial of service security issue exists in the affected product. The security issue stems from a fault occurring when a crafted CIP message is sent. Devices with less memory are more likely to be affected. This can result in a major nonrecoverable fault (MNRF). A program download is required to recover.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-CompactLogix, ControlLogix
CWE ID-CWE-404
Improper Resource Shutdown or Release
CVE-2026-0646
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.34% / 26.30%
||
7 Day CHG~0.00%
Published-16 Jun, 2026 | 14:19
Updated-16 Jun, 2026 | 15:26
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FLEX I/O Dual-port EtherNet/IP Adapters – Multiple Vulnerabilities

A denial-of-service security issue exists within the 1794-AENTR adapter due to improper memory handling of CIP protocol requests. This vulnerability can result in the adapter faulting and losing connection to its associated I/O modules, requiring a manual reset to recover.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-FLEX I/O EtherNet/IP Adapters
CWE ID-CWE-401
Missing Release of Memory after Effective Lifetime
CVE-2025-9041
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.30% / 21.75%
||
7 Day CHG~0.00%
Published-14 Aug, 2025 | 14:17
Updated-15 Aug, 2025 | 13:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FLEX 5000 I/O - Module Fault

A security issue exists due to improper handling of CIP Class 32’s request when a module is inhibited on the 5094-IF8 device. It causes the module to enter a fault state with the Module LED flashing red. Upon un-inhibiting, the module returns a connection fault (Code 16#0010), and the module cannot recover without a power cycle.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-FLEX 5000 I/O
CWE ID-CWE-1287
Improper Validation of Specified Type of Input
CVE-2025-9042
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.30% / 21.75%
||
7 Day CHG~0.00%
Published-14 Aug, 2025 | 14:23
Updated-15 Aug, 2025 | 13:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FLEX 5000 I/O - Module Fault

A security issue exists due to improper handling of CIP Class 32’s request when a module is inhibited on the 5094-IY8 device. It causes the module to enter a fault state with the Module LED flashing red. Upon un-inhibiting, the module returns a connection fault (Code 16#0010), and the module cannot recover without a power cycle.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-FLEX 5000 I/O
CWE ID-CWE-1287
Improper Validation of Specified Type of Input
CVE-2025-9064
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.55% / 42.17%
||
7 Day CHG~0.00%
Published-14 Oct, 2025 | 12:22
Updated-28 Oct, 2025 | 15:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FactoryTalk View Machine Edition Path Traversal

A path traversal security issue exists within FactoryTalk View Machine Edition, allowing unauthenticated attackers on the same network as the device to delete any file within the panels operating system. Exploitation of this vulnerability is dependent on the knowledge of filenames to be deleted.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-factorytalk_viewFactoryTalk View Machine Edition
CWE ID-CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE ID-CWE-287
Improper Authentication
CVE-2025-9124
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.37% / 29.39%
||
7 Day CHG~0.00%
Published-14 Oct, 2025 | 12:24
Updated-14 Oct, 2025 | 19:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation Compact GuardLogix® 5370 Denial-Of-Service Vulnerability

A denial-of-service security issue in the affected product. The security issue stems from a fault occurring when a crafted CIP unconnected explicit message is sent. This can result in a major non-recoverable fault.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-Compact GuardLogix® 5370
CWE ID-CWE-248
Uncaught Exception
CVE-2025-9368
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.31% / 23.23%
||
7 Day CHG~0.00%
Published-09 Dec, 2025 | 14:01
Updated-09 Dec, 2025 | 18:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
432ES-IG3 Series A Denial-of-Service Vulnerability

A security issue exists within 432ES-IG3 Series A, which affects GuardLink® EtherNet/IP Interface, resulting in denial-of-service. A manual power cycle is required to recover the device.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-432ES-IG3 Series A
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2025-9464
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.34% / 26.26%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:49
Updated-02 Feb, 2026 | 18:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. This vulnerability is triggered during fuzzing of multiple CIP classes, which causes the CIP port to become unresponsive.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9465
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.43% / 34.24%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:51
Updated-02 Feb, 2026 | 18:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles Comprehensive grammar tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9466
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.57% / 43.00%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:54
Updated-02 Feb, 2026 | 18:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP and CIP grammar tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9278
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.42% / 34.03%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:55
Updated-02 Feb, 2026 | 18:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. After running a Burp Suite active scan, the device loses ICMP connectivity, causing the web application to become inaccessible.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9279
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.53% / 40.61%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:56
Updated-02 Feb, 2026 | 18:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limit Storm tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9280
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.41% / 33.27%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:57
Updated-02 Feb, 2026 | 18:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Fuzzing performed using Defensics causes the device to become unresponsive, requiring a reboot.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9281
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.53% / 40.61%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:58
Updated-02 Feb, 2026 | 18:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles Comprehensive step limit storm tests, the device reboots

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2025-9283
Matching Score-8
Assigner-Rockwell Automation
ShareView Details
Matching Score-8
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-0.53% / 40.61%
||
7 Day CHG~0.00%
Published-20 Jan, 2026 | 13:59
Updated-02 Feb, 2026 | 18:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limits Storms tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_ltarmorstart_lt_firmwareArmorStart® LT
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2012-4695
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
ShareView Details
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
CVSS Score-7.1||HIGH
EPSS-2.76% / 84.50%
||
7 Day CHG~0.00%
Published-18 Apr, 2013 | 01:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (service outage) via a zero-byte UDP packet that is not properly handled by Logger.dll.

Action-Not Available
Vendor-n/aRockwell Automation, Inc.
Product-rslinx_enterprisen/a
CWE ID-CWE-20
Improper Input Validation
CVE-2020-12001
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
ShareView Details
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
CVSS Score-9.8||CRITICAL
EPSS-11.50% / 95.49%
||
7 Day CHG~0.00%
Published-15 Jun, 2020 | 19:14
Updated-04 Aug, 2024 | 11:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 and later, Studio 5000 Launcher: Version 31 and later Stud, 5000 Logix Designer software: Version 32 and prior is vulnerable. The parsing mechanism that processes certain file types does not provide input sanitation. This may allow an attacker to use specially crafted files to traverse the file system and modify or expose sensitive data or execute arbitrary code.

Action-Not Available
Vendor-n/aRockwell Automation, Inc.
Product-factorytalk_linxrslinx_classicFactoryTalk Linx, RSLinx Classic, Connected Components Workbench, ControlFLASH Plus, FactoryTalk Asset Centre, FactoryTalk Linx CommDTM, Studio 5000 Launcher, Studio 5000 Logix Designer software
CWE ID-CWE-20
Improper Input Validation
CVE-2012-0221
Matching Score-6
Assigner-CERT/CC
ShareView Details
Matching Score-6
Assigner-CERT/CC
CVSS Score-5||MEDIUM
EPSS-10.32% / 95.15%
||
7 Day CHG~0.00%
Published-02 Apr, 2012 | 18:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspecified function, which allows remote attackers to cause a denial of service (service outage) via a crafted packet.

Action-Not Available
Vendor-n/aRockwell Automation, Inc.
Product-factorytalkrslogix_5000n/a
CWE ID-CWE-20
Improper Input Validation
CVE-2024-7988
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-9.3||CRITICAL
EPSS-1.48% / 70.73%
||
7 Day CHG~0.00%
Published-26 Aug, 2024 | 14:47
Updated-21 Oct, 2025 | 18:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ThinManager® ThinServer™ Information Disclosure and Remote Code Execution Vulnerabilities

A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™ that allows a threat actor to execute arbitrary code with System privileges. This vulnerability exists due to the lack of proper data input validation, which allows files to be overwritten.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-thinmanager_thinserverThinManager® ThinServer™thinmanager_thinserver
CWE ID-CWE-20
Improper Input Validation
CVE-2024-5988
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-9.3||CRITICAL
EPSS-2.65% / 83.81%
||
7 Day CHG~0.00%
Published-25 Jun, 2024 | 15:53
Updated-27 Aug, 2025 | 20:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ThinManager® ThinServer™ Improper Input Validation Vulnerability

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to invoke a local or remote executable and cause a remote code execution condition on the Rockwell Automation ThinManager® ThinServer™.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-ThinManager® ThinServer™thinmanager
CWE ID-CWE-20
Improper Input Validation
CVE-2024-5989
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-9.3||CRITICAL
EPSS-2.39% / 81.95%
||
7 Day CHG~0.00%
Published-25 Jun, 2024 | 16:01
Updated-27 Aug, 2025 | 20:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ThinManager® ThinServer™ Improper Input Validation Vulnerability

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to invoke SQL injection into the program and cause a remote code execution condition on the Rockwell Automation ThinManager® ThinServer™.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-ThinManager® ThinServer™thinmanager
CWE ID-CWE-20
Improper Input Validation
CVE-2024-6089
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-8.7||HIGH
EPSS-2.12% / 79.65%
||
7 Day CHG~0.00%
Published-16 Jul, 2024 | 17:10
Updated-10 Sep, 2024 | 14:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation Major nonrecoverable fault in 5015 – AENFTXT

An input validation vulnerability exists in the Rockwell Automation 5015 - AENFTXT when a manipulated PTP packet is sent, causing the secondary adapter to result in a major nonrecoverable fault. If exploited, a power cycle is required to recover the product.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-5015-aenftxt_firmware5015-aenftxt5015 - AENFTXT5015_aenftxt
CWE ID-CWE-20
Improper Input Validation
CVE-2022-3157
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-8.6||HIGH
EPSS-1.43% / 69.78%
||
7 Day CHG~0.00%
Published-16 Dec, 2022 | 20:35
Updated-16 Apr, 2025 | 14:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation GuardLogix and ControlLogix controllers Vulnerable to Denial-Of-Service Attack

A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non-recoverable fault (MNRF) and a denial-of-service condition (DOS).

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-controllogix_5570_redundancycontrollogix_5570compactlogix_5370compact_guardlogix_5380guardlogix_5570controllogix_5570_firmwarecompact_guardlogix_5370compact_guardlogix_5380_firmwarecontrollogix_5570_redundancy_firmwarecompactlogix_5370_firmwareguardlogix_5570_firmwarecompact_guardlogix_5370_firmwareControlLogix 5570 RedundancyGuardLogix 5570CompactLogix 5370ControlLogix 5570Compact GuardLogix
CWE ID-CWE-20
Improper Input Validation
CVE-2024-4609
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-8.8||HIGH
EPSS-0.65% / 46.73%
||
7 Day CHG~0.00%
Published-16 May, 2024 | 15:13
Updated-30 Jan, 2025 | 15:50
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation Datalog Function within in FactoryTalk® View SE contains SQL Injection Vulnerability

A vulnerability exists in the Rockwell Automation FactoryTalk® View SE Datalog function that could allow a threat actor to inject a malicious SQL statement if the SQL database has no authentication in place or if legitimate credentials were stolen. If exploited, the attack could result in information exposure, revealing sensitive information. Additionally, a threat actor could potentially modify and delete the data in a remote database. An attack would only affect the HMI design time, not runtime.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-factorytalk_viewFactoryTalk® View SEfactorytalk_view
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVE-2024-37365
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-7||HIGH
EPSS-0.23% / 13.25%
||
7 Day CHG~0.00%
Published-12 Nov, 2024 | 14:52
Updated-12 Nov, 2024 | 19:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
FactoryTalk View ME Remote Code Execution Vulnerability via Project Save Path

A remote code execution vulnerability exists in the affected product. The vulnerability allows users to save projects within the public directory allowing anyone with local access to modify and/or delete files. Additionally, a malicious user could potentially leverage this vulnerability to escalate their privileges by changing the macro to execute arbitrary code.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-FactoryTalk View Machine Editionfactorytalk_view_machine_edition
CWE ID-CWE-20
Improper Input Validation
CVE-2024-3493
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-8.6||HIGH
EPSS-0.64% / 46.09%
||
7 Day CHG~0.00%
Published-15 Apr, 2024 | 21:17
Updated-04 Mar, 2025 | 17:11
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ControlLogix and GaurdLogix Vulnerable to Major Nonrecoverable Fault Due to Invalid Header Value

A specific malformed fragmented packet type (fragmented packets may be generated automatically by devices that send large amounts of data) can cause a major nonrecoverable fault (MNRF) Rockwell Automation's ControlLogix 5580, Guard Logix 5580, CompactLogix 5380, and 1756-EN4TR. If exploited, the affected product will become unavailable and require a manual restart to recover it. Additionally, an MNRF could result in a loss of view and/or control of connected devices.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-compactlogix_5380_processcompactlogix_5380controllogix_5580_firmwarecompactlogix_5380_firmware1756-en4trguardlogix_5580_firmwarecompact_guardlogix_5380compactlogix_5480compactlogix_5480_firmwarecontrollogix_5580_process_firmwareguardlogix_55801756-en4tr_firmwarecompactlogix_5380_process_firmwarecompact_guardlogix_5380_firmwarecontrollogix_5580_processcontrollogix_55801756-EN4TRControlLogix 5580GuardLogix 5580CompactLogix 5380compactlogix_5380_firmware1756-en4tr_firmwareguardlogix_5580_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2024-2427
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-7.5||HIGH
EPSS-0.69% / 48.16%
||
7 Day CHG~0.00%
Published-25 Mar, 2024 | 20:20
Updated-31 Jan, 2025 | 15:41
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527

A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 527 due to improper traffic throttling in the device. If multiple data packets are sent to the device repeatedly the device will crash and require a manual restart to recover.

Action-Not Available
Vendor-Rockwell AutomationRockwell Automation, Inc.
Product-powerflex_527_ac_drives_firmwarepowerflex_527_ac_drivesPowerFlex® 527powerflex_527_ac_drives_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2024-2425
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-7.5||HIGH
EPSS-2.82% / 84.85%
||
7 Day CHG~0.00%
Published-25 Mar, 2024 | 20:14
Updated-31 Jan, 2025 | 15:41
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527

A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 527 due to improper input validation in the device. If exploited, the web server will crash and need a manual restart to recover it.

Action-Not Available
Vendor-Rockwell AutomationRockwell Automation, Inc.
Product-powerflex_527_ac_drives_firmwarepowerflex_527_ac_drivesPowerFlex® 527
CWE ID-CWE-20
Improper Input Validation
CVE-2024-2426
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-7.5||HIGH
EPSS-2.82% / 84.85%
||
7 Day CHG~0.00%
Published-25 Mar, 2024 | 20:17
Updated-31 Jan, 2025 | 15:41
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527

A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 527 due to improper input validation in the device. If exploited, a disruption in the CIP communication will occur and a manual restart will be required by the user to recover it.

Action-Not Available
Vendor-Rockwell AutomationRockwell Automation, Inc.
Product-powerflex_527_ac_drives_firmwarepowerflex_527_ac_drivesPowerFlex® 527powerflex_527_ac_drives_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2024-2424
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-7.5||HIGH
EPSS-2.61% / 83.55%
||
7 Day CHG~0.00%
Published-15 Apr, 2024 | 21:26
Updated-25 Feb, 2025 | 18:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation Input/Output Device Vulnerable to Major Nonrecoverable Fault

An input validation vulnerability exists in the Rockwell Automation 5015-AENFTXT that causes the secondary adapter to result in a major nonrecoverable fault (MNRF) when malicious input is entered. If exploited, the availability of the device will be impacted, and a manual restart is required. Additionally, a malformed PTP packet is needed to exploit this vulnerability.

Action-Not Available
Vendor-Rockwell AutomationRockwell Automation, Inc.
Product-5015-aenftxt5015-aenftxt_firmware5015-AENFTXT5015_aenftxt
CWE ID-CWE-20
Improper Input Validation
CVE-2023-46289
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-7.5||HIGH
EPSS-0.90% / 55.20%
||
7 Day CHG~0.00%
Published-27 Oct, 2023 | 18:28
Updated-27 Feb, 2025 | 20:39
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FactoryTalk® View Site Edition Vulnerable to Improper Input Validation

Rockwell Automation FactoryTalk View Site Edition insufficiently validates user input, which could potentially allow threat actors to send malicious data bringing the product offline. If exploited, the product would become unavailable and require a restart to recover resulting in a denial-of-service condition.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-factorytalk_viewFactoryTalk® View Site Edition
CWE ID-CWE-20
Improper Input Validation
CVE-2018-19016
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
ShareView Details
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
CVSS Score-7.5||HIGH
EPSS-3.19% / 86.52%
||
7 Day CHG~0.00%
Published-27 Mar, 2019 | 17:20
Updated-05 Aug, 2024 | 11:23
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Rockwell Automation EtherNet/IP Web Server Modules 1756-EWEB (includes 1756-EWEBK) Version 5.001 and earlier, and CompactLogix 1768-EWEB Version 2.005 and earlier. A remote attacker could send a crafted UDP packet to the SNMP service causing a denial-of-service condition to occur until the affected product is restarted.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-ethernet\/ip_web_server_module_1756-ewebethernet\/ip_web_server_module_1768-ewebRockwell Automation EtherNet/IP Web Server Modules 1756-EWEB (includes 1756-EWEBK) Version 5.001 and earlier, and CompactLogix 1768-EWEB Version 2.005 and earlier.
CWE ID-CWE-20
Improper Input Validation
CVE-2023-29464
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-8.2||HIGH
EPSS-9.60% / 94.89%
||
7 Day CHG~0.00%
Published-13 Oct, 2023 | 12:57
Updated-17 Sep, 2024 | 16:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation FactoryTalk Linx Vulnerable to Denial-of-Service and Information Disclosure

FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. If the size is large enough, it causes communications over the common industrial protocol to become unresponsive to any type of packet, resulting in a denial-of-service to FactoryTalk Linx over the common industrial protocol.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-factorytalk_linxFactoryTalk Linx factorytalk_linx
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2023-29026
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-4.7||MEDIUM
EPSS-0.62% / 45.31%
||
7 Day CHG~0.00%
Published-11 May, 2023 | 17:47
Updated-24 Jan, 2025 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ArmorStart ST Vulnerable to Cross-Site Scripting Attack

A cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-armorstart_st_281earmorstart_st_284ee_firmwarearmorstart_st_284eearmorstart_st_281e_firmwareArmorStart ST
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2023-2917
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-9.8||CRITICAL
EPSS-67.84% / 99.23%
||
7 Day CHG~0.00%
Published-17 Aug, 2023 | 15:10
Updated-08 Oct, 2024 | 16:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability.  Due to an improper input validation, a path traversal vulnerability exists, via the filename field, when the ThinManager processes a certain function. If exploited, an unauthenticated remote attacker can upload arbitrary files to any directory on the disk drive where ThinServer.exe is installed.  A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and potentially gain remote code execution abilities.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-thinmanager_thinserverThinManager ThinServerthinmanager_thinserver
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CVE-2024-10944
Matching Score-6
Assigner-Rockwell Automation
ShareView Details
Matching Score-6
Assigner-Rockwell Automation
CVSS Score-7.1||HIGH
EPSS-0.50% / 38.92%
||
7 Day CHG~0.00%
Published-12 Nov, 2024 | 17:03
Updated-15 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
FactoryTalk® Updater Remote Code Execution

A Remote Code Execution vulnerability exists in the affected product. The vulnerability requires a high level of permissions and exists due to improper input validation resulting in the possibility of a malicious Updated Agent being deployed.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-FactoryTalk Updaterfactorytalk_updater
CWE ID-CWE-20
Improper Input Validation
  • Previous
  • 1
  • 2
  • Next
Details not found