CVE-2017-14467
Description
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information, modification of settings, or modification of ladder logic. An attacker can send unauthenticated packets to trigger this vulnerability. Required Keyswitch State: REMOTE Description: Live rung edits are able to be made by an unauthenticated user allowing for addition, deletion, or modification of existing ladder logic. Additionally, faults and cpu state modification can be triggered if specific ladder logic is used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Unauthenticated remote attacker can read/write files on Allen Bradley Micrologix 1400 PLC with keyswitch in REMOTE state, leading to data disclosure, setting modification, or ladder logic tampering.
Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before (including FRN 21.0 and FRN 15) [1]. The vulnerability allows read or write operations via CIP encapsulated PCCC commands using function codes 0xa1, 0xa2 (read) or 0xa7, 0xa9, 0xaa, 0xab (write) [1]. The required keyswitch state is REMOTE [1]. Affected versions: all Micrologix 1400 Series B up to FRN 21.2 inclusive [1].
Exploitation
An attacker can send unauthenticated specially crafted packets over the network to the PLC [1]. No authentication or prior access is required; the attacker only needs network connectivity to the device. The keyswitch must be in the REMOTE position [1]. Using the appropriate PCCC function codes, the attacker can perform read or write operations on files, including ladder logic files [1].
Impact
Successful exploitation allows the attacker to read sensitive information (e.g., ladder logic, master password), modify settings (e.g., communication protocols, network configuration), or modify ladder logic (addition, deletion, or modification of rungs) [1]. Specific ladder logic can also trigger faults and CPU state modification [1]. The impact is complete compromise of confidentiality, integrity, and availability of the PLC with a CVSSv3 score of 10.0 [1].
Mitigation
Allen Bradley (Rockwell Automation) has not publicly released a firmware fix for this vulnerability as of the publication date [1]. No workarounds are documented in the available reference. Users should monitor vendor advisories for future updates. The device may be at end-of-life; contact the vendor for support options [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <= FRN 21.2
- Talos/Allen Bradleyv5Range: Allen Bradley Micrologix 1400 Series B FRN 21.2, Allen Bradley Micrologix 1400 Series B FRN 21.0, Allen Bradley Micrologix 1400 Series B FRN 15
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
1- www.talosintelligence.com/vulnerability_reports/TALOS-2017-0443mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.