An attacker could send a crafted HTTP/HTTPS request to render the web server unavailable and/or lead to remote code execution caused by a stack-based buffer overflow vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Denial Of Service
RCE
Buffer Overflow
Compactlogix 5370 L1 Firmware
Compactlogix 5370 L2 Firmware
+2
NVD
CVSS 3.1
9.8
EPSS
10.0%