CVE-2017-14466
Description
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information, modification of settings, or modification of ladder logic. An attacker can send unauthenticated packets to trigger this vulnerability. Required Keyswitch State: REMOTE or PROG Description: The filetype 0x03 allows users write access, allowing the ability to overwrite the Master Password value stored in the file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An unauthenticated attacker can overwrite the Master Password on Allen Bradley Micrologix 1400 PLCs via filetype 0x03 write access, leading to full compromise.
Vulnerability
An access control vulnerability exists in the file permissions of Allen Bradley Micrologix 1400 Series B firmware versions FRN 21.2 and before (including FRN 21.0 and FRN 15). The filetype 0x03 grants unauthenticated write access, allowing an attacker to overwrite the Master Password stored in that file. The vulnerability is reachable when the keyswitch is in the REMOTE or PROG state [1].
Exploitation
An attacker can send unauthenticated CIP encapsulated PCCC commands using write function codes (0xa7, 0xa9, 0xaa, 0xab) to filetype 0x03. No authentication or prior access is required. The attacker must have network connectivity to the PLC and the keyswitch must be in REMOTE or PROG position. The exploit consists of crafting a packet that writes a new value to the Master Password location [1].
Impact
Successful exploitation allows the attacker to overwrite the Master Password, leading to disclosure of sensitive information (the password), modification of settings, and modification of ladder logic. The attacker gains the ability to change configuration and potentially take full control of the PLC. The CVSSv3 score is 10.0, indicating critical impact on confidentiality, integrity, and availability [1].
Mitigation
The vendor has not publicly disclosed a specific fixed firmware version in the available references. Users should contact Rockwell Automation for patching guidance and upgrade to the latest firmware. As a workaround, restrict network access to the PLC and ensure the keyswitch is in the RUN position when not in maintenance mode [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: FRN 21.2 and before
- Talos/Allen Bradleyv5Range: Allen Bradley Micrologix 1400 Series B FRN 21.2, Allen Bradley Micrologix 1400 Series B FRN 21.0, Allen Bradley Micrologix 1400 Series B FRN 15
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
1- www.talosintelligence.com/vulnerability_reports/TALOS-2017-0443mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.