Unrated severityNVD Advisory· Published Sep 12, 2024· Updated Sep 12, 2024

Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP

CVE-2024-6077

Description

A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover.

Affected products

Rockwellautomation/1756-EN4TRcpe-rescue
Range: v2.001
Rockwell Automation/Compact GuardLogix 5380 SIL 2v5
Range: v.32.013
Rockwell Automation/Compact GuardLogix 5380 SIL 3v5
Range: v.32.011
Rockwellautomation/Compactlogixcpe-rescue2 versions
v.32 .011+ 1 more
- (no CPE)range: v.32 .011
- (no CPE)range: v.32.011
Rockwellautomation/CompactLogix 5380cpe-rescue
Range: v.33.011
Rockwellautomation/Controllogixcpe-rescue
Range: v.32.011
Rockwellautomation/ControlLogix 5580cpe-rescue
Range: v.33.011
Rockwellautomation/Guardlogixcpe-rescue
Range: v.32.011

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000