Unrated severityNVD Advisory· Published Oct 14, 2024· Updated Oct 15, 2024

CVE-2024-6207

Description

CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html and send a specially crafted CIP message to the device. If exploited, a threat actor could help prevent access to the legitimate user and end connections to connected devices including the workstation. To recover the controllers, a download is required which ends any process that the controller is running.

Affected products

Rockwell Automation/Compact GuardLogix 5380 SIL 2v5
Range: V31.011
Rockwell Automation/Compact GuardLogix 5380 SIL 3v5
Range: V32.013
Rockwellautomation/Compactlogixcpe-rescue2 versions
V28.011+ 1 more
- (no CPE)range: V28.011
- (no CPE)range: V32.011
Rockwellautomation/Controllogixcpe-rescue
Range: V28.011
Rockwellautomation/ControlLogix 5580cpe-rescue
Range: V33.011
Rockwell Automation/FactoryTalk® Logix Echov5
Range: V33.011
Rockwellautomation/Guardlogixcpe-rescue
Range: V31.011

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1707.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000