VYPR

Vendor CVEs

Allen-Bradley

All CVEs

30 total · sorted by risk
  • CVE-2017-14473CriApr 5, 2018
    risk 0.68cvss 10.0epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14472CriApr 5, 2018
    risk 0.68cvss 10.0epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14471CriApr 5, 2018
    risk 0.68cvss 10.0epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14470CriApr 5, 2018
    risk 0.68cvss 10.0epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14469CriApr 5, 2018
    risk 0.68cvss 10.0epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14468CriApr 5, 2018
    risk 0.67cvss 9.8epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14467CriApr 5, 2018
    risk 0.67cvss 9.8epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14466CriApr 5, 2018
    risk 0.67cvss 9.8epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14464CriApr 5, 2018
    risk 0.67cvss 9.8epss 0.37

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14463CriApr 5, 2018
    risk 0.67cvss 9.8epss 0.38

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14465CriApr 5, 2018
    risk 0.66cvss 9.8epss 0.34

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2017-14462CriApr 5, 2018
    risk 0.66cvss 9.8epss 0.34

    An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive…

  • CVE-2015-6490CriOct 28, 2015
    risk 0.64cvss 9.8epss 0.07

    Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices through B FRN 15.003 allows remote attackers to execute arbitrary code via unspecified vectors.

  • CVE-2017-12089HigApr 5, 2018
    risk 0.56cvss 8.6epss 0.05

    An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in halted operations. An attacker can send an unauthenticated…

  • CVE-2017-12088HigApr 5, 2018
    risk 0.56cvss 8.6epss 0.05

    An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladder logic. An attacker…

  • CVE-2017-12090HigApr 5, 2018
    risk 0.50cvss 7.7epss 0.04

    An exploitable denial of service vulnerability exists in the processing of snmp-set commands of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted snmp-set request, when sent without associated firmware flashing snmp-set commands, can cause a…

  • CVE-2020-6088HigFeb 4, 2021
    risk 0.49cvss 7.5epss 0.03

    An exploitable denial of service vulnerability exists in the ENIP Request Path Network Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An…

  • CVE-2020-6111HigDec 3, 2020
    risk 0.49cvss 7.5epss 0.05

    An exploitable denial-of-service vulnerability exists in the IPv4 functionality of Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 16.000, Series B FRN 15.002, Series B FRN 15.000, Series B FRN 14.000, Series B FRN 13.000, Series B FRN 12.000,…

  • CVE-2020-6085HigOct 19, 2020
    risk 0.49cvss 7.5epss 0.04

    An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An…

  • CVE-2020-6084HigOct 19, 2020
    risk 0.49cvss 7.5epss 0.04

    An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An…

  • CVE-2020-6087HigOct 14, 2020
    risk 0.49cvss 7.5epss 0.04

    An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can…

  • CVE-2020-6086HigOct 14, 2020
    risk 0.49cvss 7.5epss 0.04

    An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can…

  • CVE-2020-6083HigOct 14, 2020
    risk 0.49cvss 7.5epss 0.04

    An exploitable denial of service vulnerability exists in the ENIP Request Path Port Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can…

  • CVE-2015-6492HigOct 28, 2015
    risk 0.49cvss 7.5epss 0.04

    Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow remote attackers to cause a denial of service (memory corruption and device crash) via a crafted HTTP request.

  • CVE-2016-9334HigFeb 13, 2017
    risk 0.48cvss 7.3epss 0.04

    An issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 controller 1763-L16AWA, Series A and B, Version 14.000 and prior versions; 1763-L16BBB, Series A and B, Version 14.000 and prior versions; 1763-L16BWA, Series A and B, Version 14.000 and prior versions;…

  • CVE-2017-12093MedApr 5, 2018
    risk 0.35cvss 5.3epss 0.06

    An exploitable insufficient resource pool vulnerability exists in the session communication functionality of Allen Bradley Micrologix 1400 Series B Firmware 21.2 and before. A specially crafted stream of packets can cause a flood of the session resource pool resulting in…

  • CVE-2017-12092LowJun 4, 2018
    risk 0.24cvss 3.7epss 0.03

    An exploitable file write vulnerability exists in the memory module functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a file write resulting in a new program being written to the memory module. An attacker can send…

  • CVE-2015-6491Oct 28, 2015
    risk 0.00cvss epss 0.02

    Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow remote authenticated users to insert the content of an arbitrary file into a FRAME element via unspecified vectors.

  • CVE-2015-6488Oct 28, 2015
    risk 0.00cvss epss 0.03

    Cross-site scripting (XSS) vulnerability in the web server on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2015-6486Oct 28, 2015
    risk 0.00cvss epss 0.04

    SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.