VYPR

Vendor CVEs

Rockwellautomation

All CVEs

321 total · sorted by risk
  • CVE-2024-6207Oct 14, 2024
    risk 0.00cvss epss 0.01

    CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and send a specially crafted CIP message to the device. If exploited, a threat actor could help prevent access to the legitimate user and end connections to connected…

  • CVE-2024-7847Oct 14, 2024
    risk 0.00cvss epss 0.00

    VULNERABILITY DETAILS Rockwell Automation used the latest versions of the CVSS scoring system to assess the following vulnerabilities. The following vulnerabilities were reported to us by Sharon Brizinov of Claroty Research - Team82. A feature in the affected products enables…

  • CVE-2024-8626Oct 8, 2024
    risk 0.00cvss epss 0.01

    Due to a memory leak, a denial-of-service vulnerability exists in the Rockwell Automation affected products. A malicious actor could exploit this vulnerability by performing multiple actions on certain web pages of the product causing the affected products to become fully…

  • CVE-2024-9124Oct 8, 2024
    risk 0.00cvss epss 0.01

    A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 600T. If the device is overloaded with requests, it will become unavailable. The device may require a power cycle to recover it if it does not re-establish a connection after it stops receiving…

  • CVE-2024-6436Sep 27, 2024
    risk 0.00cvss epss 0.01

    An input validation vulnerability exists in the Rockwell Automation Sequence Manager™ which could allow a malicious user to send malformed packets to the server and cause a denial-of-service condition. If exploited, the device would become unresponsive, and a manual restart…

  • CVE-2024-7961Sep 12, 2024
    risk 0.00cvss epss 0.01

    A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited, the threat actor could upload arbitrary files to the server that could result in a remote code execution.

  • CVE-2024-7960Sep 12, 2024
    risk 0.00cvss epss 0.00

    The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The vulnerability exists due to having an incorrect privilege matrix that allows users to have access to functions they should not.

  • CVE-2024-6077Sep 12, 2024
    risk 0.00cvss epss 0.01

    A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover.

  • CVE-2024-45826Sep 12, 2024
    risk 0.00cvss epss 0.11

    CVE-2024-45826 IMPACT Due to improper input validation, a path traversal and remote code execution vulnerability exists when the ThinManager® processes a crafted POST request. If exploited, a user can install an executable file.

  • CVE-2024-45823Sep 12, 2024
    risk 0.00cvss epss 0.01

    CVE-2024-45823 IMPACT An authentication bypass vulnerability exists in the affected product. The vulnerability exists due to shared secrets across accounts and could allow a threat actor to impersonate a user if the threat actor is able to enumerate additional information…

  • CVE-2024-45824Sep 12, 2024
    risk 0.00cvss epss 0.01

    CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. The vulnerability occurs when chained with Path Traversal, Command Injection, and XSS Vulnerabilities and allows for full unauthenticated remote code execution. The link in the mitigations…

  • CVE-2024-7987Aug 26, 2024
    risk 0.00cvss epss 0.00

    A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™ that allows a threat actor to execute arbitrary code with System privileges. To exploit this vulnerability and a threat actor must abuse the ThinServer™ service by creating a…

  • CVE-2024-7986Aug 23, 2024
    risk 0.00cvss epss 0.01

    A vulnerability exists in the Rockwell Automation ThinManager® ThinServer that allows a threat actor to disclose sensitive information. A threat actor can exploit this vulnerability by abusing the ThinServer™ service to read arbitrary files by creating a junction that…

  • CVE-2024-40620Aug 14, 2024
    risk 0.00cvss epss 0.00

    CVE-2024-40620 IMPACT A vulnerability exists in the affected product due to lack of encryption of sensitive information. The vulnerability results in data being sent between the Console and the Dashboard without encryption, which can be seen in the logs of proxy servers,…

  • CVE-2024-40619Aug 14, 2024
    risk 0.00cvss epss 0.01

    CVE-2024-40619 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service.

  • CVE-2024-7513Aug 14, 2024
    risk 0.00cvss epss 0.02

    CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. The vulnerability occurs due to improper default file permissions allowing any user to edit or replace files, which are executed by account with elevated permissions.

  • CVE-2024-7515Aug 14, 2024
    risk 0.00cvss epss 0.01

    CVE-2024-7515 IMPACT A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller.

  • CVE-2024-7507Aug 14, 2024
    risk 0.00cvss epss 0.01

    CVE-2024-7507 IMPACT A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller.

  • CVE-2024-6089Jul 16, 2024
    risk 0.00cvss epss 0.02

    An input validation vulnerability exists in the Rockwell Automation 5015 - AENFTXT when a manipulated PTP packet is sent, causing the secondary adapter to result in a major nonrecoverable fault. If exploited, a power cycle is required to recover the product.

  • CVE-2024-6326Jul 16, 2024
    risk 0.00cvss epss 0.00

    An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A malicious user could exploit this vulnerability by starting a back-up or restore process, which temporarily exposes private keys, passwords, pre-shared keys, and…

  • CVE-2024-6325Jul 16, 2024
    risk 0.00cvss epss 0.00

    The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and CVE-2022-1161 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advis…

  • CVE-2024-6435Jul 16, 2024
    risk 0.00cvss epss 0.00

    A privilege escalation vulnerability exists in the affected products which could allow a malicious user with basic privileges to access functions which should only be available to users with administrative level privileges. If exploited, an attacker could read sensitive data,…

  • CVE-2024-5990Jun 25, 2024
    risk 0.00cvss epss 0.02

    Due to an improper input validation, an unauthenticated threat actor can send a malicious message to a monitor thread within Rockwell Automation ThinServer™ and cause a denial-of-service condition on the affected device.

  • CVE-2024-5989Jun 25, 2024
    risk 0.00cvss epss 0.02

    Due to an improper input validation, an unauthenticated threat actor can send a malicious message to invoke SQL injection into the program and cause a remote code execution condition on the Rockwell Automation ThinManager® ThinServer™.

  • CVE-2024-37369Jun 14, 2024
    risk 0.00cvss epss 0.00

    A privilege escalation vulnerability exists in the affected product. The vulnerability allows low-privilege users to edit scripts, bypassing Access Control Lists, and potentially gaining further access within the system.

  • CVE-2024-5659Jun 14, 2024
    risk 0.00cvss epss 0.00

    Rockwell Automation was made aware of a vulnerability that causes all affected controllers on the same network to result in a major nonrecoverable fault(MNRF/Assert). This vulnerability could be exploited by sending abnormal packets to the mDNS port. If exploited, the…

  • CVE-2024-37368Jun 14, 2024
    risk 0.00cvss epss 0.01

    A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE. The vulnerability allows a user from a remote system with FTView to send a packet to the customer’s server to view an HMI project. Due to the lack of proper authentication, this…

  • CVE-2024-37367Jun 14, 2024
    risk 0.00cvss epss 0.01

    A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE v12. The vulnerability allows a user from a remote system with FTView to send a packet to the customer’s server to view an HMI project. This action is allowed without proper…

  • CVE-2024-4609May 16, 2024
    risk 0.00cvss epss 0.01

    A vulnerability exists in the Rockwell Automation FactoryTalk® View SE Datalog function that could allow a threat actor to inject a malicious SQL statement if the SQL database has no authentication in place or if legitimate credentials were stolen. If exploited, the attack…

  • CVE-2024-2424Apr 15, 2024
    risk 0.00cvss epss 0.03

    An input validation vulnerability exists in the Rockwell Automation 5015-AENFTXT that causes the secondary adapter to result in a major nonrecoverable fault (MNRF) when malicious input is entered. If exploited, the availability of the device will be impacted, and a manual…

  • CVE-2024-3493Apr 15, 2024
    risk 0.00cvss epss 0.01

    A specific malformed fragmented packet type (fragmented packets may be generated automatically by devices that send large amounts of data) can cause a major nonrecoverable fault (MNRF) Rockwell Automation's ControlLogix 5580, Guard Logix 5580, CompactLogix 5380, and…

  • CVE-2024-2929Mar 26, 2024
    risk 0.00cvss epss 0.00

    A memory corruption vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code to the software by corrupting the memory triggering an access violation. Once inside, the threat actor can run harmful code…

  • CVE-2024-21920Mar 26, 2024
    risk 0.00cvss epss 0.00

    A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries. This could reveal sensitive information and even cause the application to crash, resulting in a denial-of-service condition.…

  • CVE-2024-21919Mar 26, 2024
    risk 0.00cvss epss 0.00

    An uninitialized pointer in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code to the software by leveraging the pointer after it is properly. Once inside, the threat actor can run harmful code on the system. This…

  • CVE-2024-21918Mar 26, 2024
    risk 0.00cvss epss 0.00

    A memory buffer vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code to the software by corrupting the memory and triggering an access violation. Once inside, the threat actor can run harmful code…

  • CVE-2024-21913Mar 26, 2024
    risk 0.00cvss epss 0.00

    A heap-based memory buffer overflow vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code into the software by overstepping the memory boundaries, which triggers an access violation. Once inside, the…

  • CVE-2024-21912Mar 26, 2024
    risk 0.00cvss epss 0.00

    An arbitrary code execution vulnerability in Rockwell Automation Arena Simulation could let a malicious user insert unauthorized code into the software. This is done by writing beyond the designated memory area, which causes an access violation. Once inside, the threat actor…

  • CVE-2024-21914Mar 25, 2024
    risk 0.00cvss epss 0.01

    A vulnerability exists in the affected product that allows a malicious user to restart the Rockwell Automation PanelView™ Plus 7 terminal remotely without security protections. If the vulnerability is exploited, it could lead to the loss of view or control of the PanelView™…

  • CVE-2024-2427Mar 25, 2024
    risk 0.00cvss epss 0.01

    A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 527 due to improper traffic throttling in the device. If multiple data packets are sent to the device repeatedly the device will crash and require a manual restart to recover.

  • CVE-2024-2426Mar 25, 2024
    risk 0.00cvss epss 0.03

    A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 527 due to improper input validation in the device. If exploited, a disruption in the CIP communication will occur and a manual restart will be required by the user to recover it.

  • CVE-2024-2425Mar 25, 2024
    risk 0.00cvss epss 0.03

    A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 527 due to improper input validation in the device. If exploited, the web server will crash and need a manual restart to recover it.

  • CVE-2024-21915Feb 16, 2024
    risk 0.00cvss epss 0.01

    A privilege escalation vulnerability exists in Rockwell Automation FactoryTalk® Service Platform (FTSP). If exploited, a malicious user with basic user group privileges could potentially sign into the software and receive FTSP Administrator Group privileges. A threat actor…

  • CVE-2024-21916Jan 31, 2024
    risk 0.00cvss epss 0.01

    A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.

  • CVE-2024-21917Jan 31, 2024
    risk 0.00cvss epss 0.01

    A vulnerability exists in Rockwell Automation FactoryTalk® Service Platform that allows a malicious user to obtain the service token and use it for authentication on another FTSP directory. This is due to the lack of digital signing between the FTSP service token and directory.…

  • CVE-2023-27858Oct 27, 2023
    risk 0.00cvss epss 0.00

    Rockwell Automation Arena Simulation contains an arbitrary code execution vulnerability that could potentially allow a malicious user to commit unauthorized code to the software by using an uninitialized pointer in the application.  The threat-actor could then execute…

  • CVE-2023-27854Oct 27, 2023
    risk 0.00cvss epss 0.00

    An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow.  The threat-actor could then execute…

  • CVE-2023-46289Oct 27, 2023
    risk 0.00cvss epss 0.01

    Rockwell Automation FactoryTalk View Site Edition insufficiently validates user input, which could potentially allow threat actors to send malicious data bringing the product offline. If exploited, the product would become unavailable and require a restart to recover resulting…

  • CVE-2023-46290Oct 27, 2023
    risk 0.00cvss epss 0.03

    Due to inadequate code logic, a previously unauthenticated threat actor could potentially obtain a local Windows OS user token through the FactoryTalk® Services Platform web service and then use the token to log in into FactoryTalk® Services Platform . This vulnerability can…

  • CVE-2023-29464Oct 13, 2023
    risk 0.00cvss epss 0.10

    FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure.…

  • CVE-2023-2262Sep 20, 2023
    risk 0.00cvss epss 0.01

    A buffer overflow vulnerability exists in the Rockwell Automation select 1756-EN* communication devices. If exploited, a threat actor could potentially leverage this vulnerability to perform a remote code execution. To exploit this vulnerability, a threat actor would have to…

Page 4 of 7