Rockwell Automation MicroLogix 1100, all versions, allows a remote, unauthenticated attacker sending specially crafted commands to cause the PLC to fault when the controller is switched to RUN mode, which results in a denial-of-service condition. If successfully exploited, this vulnerability will cause the controller to fault whenever the controller is switched to RUN mode.
References
Link | Resource |
---|---|
https://us-cert.cisa.gov/ics/advisories/icsa-21-189-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
History
12 Jul 2021, 17:09
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:rockwellautomation:micrologix_1100:-:*:*:*:*:*:*:* cpe:2.3:o:rockwellautomation:micrologix_1100_firmware:*:*:*:*:*:*:*:* |
|
References | (MISC) https://us-cert.cisa.gov/ics/advisories/icsa-21-189-01 - Third Party Advisory, US Government Resource | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 8.6 |
CWE | NVD-CWE-noinfo |
09 Jul 2021, 15:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-07-09 15:15
Updated : 2024-02-04 21:47
NVD link : CVE-2021-33012
Mitre link : CVE-2021-33012
CVE.ORG link : CVE-2021-33012
JSON object : View
Products Affected
rockwellautomation
- micrologix_1100_firmware
- micrologix_1100
CWE