CVE-2016-5645

Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote attackers to load arbitrary firmware updates by leveraging knowledge of this community.
References
Link Resource
http://www.securityfocus.com/bid/92428
https://ics-cert.us-cert.gov/advisories/ICSA-16-224-01 Mitigation Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/92428
https://ics-cert.us-cert.gov/advisories/ICSA-16-224-01 Mitigation Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:rockwellautomation:1766-l32awa:-:*:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:1766-l32awaa:-:*:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:1766-l32bwa:-:*:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:1766-l32bwaa:-:*:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:1766-l32bxb:-:*:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:1766-l32bxba:-:*:*:*:*:*:*:*

History

21 Nov 2024, 02:54

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/92428 - () http://www.securityfocus.com/bid/92428 -
References () https://ics-cert.us-cert.gov/advisories/ICSA-16-224-01 - Mitigation, Third Party Advisory, US Government Resource () https://ics-cert.us-cert.gov/advisories/ICSA-16-224-01 - Mitigation, Third Party Advisory, US Government Resource

Information

Published : 2016-08-24 02:00

Updated : 2024-11-21 02:54


NVD link : CVE-2016-5645

Mitre link : CVE-2016-5645

CVE.ORG link : CVE-2016-5645


JSON object : View

Products Affected

rockwellautomation

  • 1766-l32bwaa
  • 1766-l32awa
  • 1766-l32awaa
  • 1766-l32bxb
  • 1766-l32bxba
  • 1766-l32bwa
CWE
CWE-284

Improper Access Control