Unrated severityNVD Advisory· Published Oct 3, 2014· Updated May 6, 2026

CVE-2014-5410

Description

The DNP3 feature on Rockwell Automation Allen-Bradley MicroLogix 1400 1766-Lxxxxx A FRN controllers 7 and earlier and 1400 1766-Lxxxxx B FRN controllers before 15.001 allows remote attackers to cause a denial of service (process disruption) via malformed packets over (1) an Ethernet network or (2) a serial line.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A denial-of-service vulnerability in the DNP3 feature of Rockwell Automation Allen-Bradley MicroLogix 1400 controllers can be triggered by malformed packets over Ethernet or serial lines.

Vulnerability

The DNP3 feature implementation in Rockwell Automation Allen-Bradley MicroLogix 1400 controllers contains an improper input validation vulnerability (CWE-20). Affected versions include 1766-Lxxxxx Series A FRN 7 and earlier, and 1766-Lxxxxx Series B FRN 15.000 and earlier [1][2]. The vulnerability is present in the DNP3 application layer, which is accessible over Ethernet or serial communication lines.

Exploitation

An attacker can exploit this vulnerability remotely by sending specially crafted, malformed DNP3 packets to the target controller over an Ethernet network or a serial line [1][2]. No authentication is required, and the attacker only needs network connectivity to the device. The malformed packets trigger a flaw in input validation within the DNP3 protocol handler.

Impact

Successful exploitation causes a disruption of the DNP3 application layer process, leading to a denial-of-service (DoS) condition [1][2]. This results in a loss of product communication and network availability. The controller is unable to resume normal operation until a manual power cycle is performed, causing an interruption in industrial control processes [1][2].

Mitigation

Rockwell Automation has released a firmware revision to mitigate this vulnerability. Users should update Series A controllers to a version after FRN 7, and Series B controllers to FRN 15.001 or later [1][2]. As a best practice, ICS-CERT recommends that organizations isolate control system networks from untrusted networks and restrict network access to affected devices [1][2].

References

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Rockwellautomation/Ab Micrologix Controller
cpe:2.3:h:rockwellautomation:ab_micrologix_controller:1400:*:*:*:*:*:*:*
Rockwellautomation/MicroLogix 1400llm-fuzzy
Range: <=7 (A FRN) / <15.001 (B FRN)
Rockwellautomation/Allen-Bradley MicroLogix 1100cpe-rescue
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

ics-cert.us-cert.gov/advisories/ICSA-14-254-02nvdThird Party AdvisoryUS Government Resource
github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2014/icsa-14-254-02.jsonnvd
rockwellautomation.custhelp.com/app/answers/detail/a_id/620295nvd
www.cisa.gov/news-events/ics-advisories/icsa-14-254-02nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000