Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote attackers to load arbitrary firmware updates by leveraging knowledge of this community.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/92428 | |
https://ics-cert.us-cert.gov/advisories/ICSA-16-224-01 | Mitigation Third Party Advisory US Government Resource |
http://www.securityfocus.com/bid/92428 | |
https://ics-cert.us-cert.gov/advisories/ICSA-16-224-01 | Mitigation Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/92428 - | |
References | () https://ics-cert.us-cert.gov/advisories/ICSA-16-224-01 - Mitigation, Third Party Advisory, US Government Resource |
Information
Published : 2016-08-24 02:00
Updated : 2024-11-21 02:54
NVD link : CVE-2016-5645
Mitre link : CVE-2016-5645
CVE.ORG link : CVE-2016-5645
JSON object : View
Products Affected
rockwellautomation
- 1766-l32bwaa
- 1766-l32awa
- 1766-l32awaa
- 1766-l32bxb
- 1766-l32bxba
- 1766-l32bwa
CWE
CWE-284
Improper Access Control