Unrated severityNVD Advisory· Published Aug 31, 2022· Updated Apr 16, 2025
AutomationDirect DirectLOGIC with Ethernet Communication Uncontrolled Resource Consumption
CVE-2022-2004
Description
AutomationDirect DirectLOGIC is vulnerable to a a specially crafted packet can be sent continuously to the PLC to prevent access from DirectSoft and other devices, causing a denial-of-service condition. This issue affects: AutomationDirect DirectLOGIC D0-06 series CPUs D0-06DD1 versions prior to 2.72; D0-06DD2 versions prior to 2.72; D0-06DR versions prior to 2.72; D0-06DA versions prior to 2.72; D0-06AR versions prior to 2.72; D0-06AA versions prior to 2.72; D0-06DD1-D versions prior to 2.72; D0-06DD2-D versions prior to 2.72; D0-06DR-D versions prior to 2.72;
Affected products
2- Range: <2.72
- AutomationDirect/DirectLOGIC D0-06 series CPUsv5Range: D0-06DD1
Patches
Vulnerability mechanics
References
1- www.cisa.gov/uscert/ics/advisories/icsa-22-167-03mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.