Skip to main content

1756 Enbt

3 CVEs product

Monthly

CVE-2026-9653 HIGH This Week

Denial-of-service in Rockwell Automation 1756-EN2, 1756-EN3, and 1756-ENBT ControlLogix EtherNet/IP communication modules lets an unauthenticated network attacker drop active device connections by sending malformed CIP Implicit (I/O) Connection packets. Because CVSS 4.0 rates only availability impact (VC:N/VI:N/VA:H) and connections recover immediately once the traffic stops, the flaw enables repeatable disruption rather than persistent outage or code execution. No public exploit identified at time of analysis, and the module is not in CISA KEV.

Information Disclosure 1756 En2 1756 En3 1756 Enbt
NVD
CVSS 4.0
8.7
EPSS
0.2%
CVE-2012-6441 MEDIUM This Month

An information exposure of confidential information results when the device receives a specially crafted CIP packet to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Rockwell Controllogix Controllers Guardlogix Controllers Micrologix +14
NVD
CVSS 2.0
5.0
EPSS
1.0%
CVE-2012-6439 HIGH This Week

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that changes the product’s. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Rockwell Authentication Bypass Controllogix Controllers Guardlogix Controllers Micrologix +14
NVD
CVSS 2.0
8.5
EPSS
0.6%
EPSS 0% CVSS 8.7
HIGH This Week

Denial-of-service in Rockwell Automation 1756-EN2, 1756-EN3, and 1756-ENBT ControlLogix EtherNet/IP communication modules lets an unauthenticated network attacker drop active device connections by sending malformed CIP Implicit (I/O) Connection packets. Because CVSS 4.0 rates only availability impact (VC:N/VI:N/VA:H) and connections recover immediately once the traffic stops, the flaw enables repeatable disruption rather than persistent outage or code execution. No public exploit identified at time of analysis, and the module is not in CISA KEV.

Information Disclosure 1756 En2 1756 En3 1756 Enbt
NVD
EPSS 1% CVSS 5.0
MEDIUM This Month

An information exposure of confidential information results when the device receives a specially crafted CIP packet to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Rockwell Controllogix Controllers +16
NVD
EPSS 1% CVSS 8.5
HIGH This Week

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that changes the product’s. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Rockwell Authentication Bypass Controllogix Controllers +16
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy