Skip to main content

Compact Guardlogix 5370 Firmware

4 CVEs product

Monthly

CVE-2022-3157 HIGH This Week

A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non-recoverable fault (MNRF) and a denial-of-service condition (DOS). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Rockwell Compactlogix 5370 Firmware Compact Guardlogix 5370 Firmware Compact Guardlogix 5380 Firmware +3
NVD
CVSS 3.1
7.5
EPSS
1.4%
CVE-2022-1797 HIGH This Week

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Rockwell Compactlogix 5380 Firmware Compact Guardlogix 5380 Firmware Compactlogix 5480 Firmware +6
NVD
CVSS 3.1
8.6
EPSS
1.9%
CVE-2022-1161 CRITICAL Act Now

An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Control systems. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Compactlogix 1768 L43 Firmware Compactlogix 1768 L45 Firmware Compactlogix 1769 L31 Firmware Compactlogix 1769 L32C Firmware +20
NVD
CVSS 3.1
9.8
EPSS
5.0%
CVE-2019-10954 HIGH This Week

An attacker could send crafted SMTP packets to cause a denial-of-service condition where the controller enters a major non-recoverable faulted state (MNRF) in CompactLogix 5370 L1, L2, and L3. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow Compactlogix 5370 L1 Firmware Compactlogix 5370 L2 Firmware Compactlogix 5370 L3 Firmware +2
NVD
CVSS 3.1
7.5
EPSS
6.1%
EPSS 1% CVSS 7.5
HIGH This Week

A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non-recoverable fault (MNRF) and a denial-of-service condition (DOS). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Rockwell Compactlogix 5370 Firmware +5
NVD
EPSS 2% CVSS 8.6
HIGH This Week

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Rockwell Compactlogix 5380 Firmware +8
NVD
EPSS 5% CVSS 9.8
CRITICAL Act Now

An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Control systems. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Compactlogix 1768 L43 Firmware Compactlogix 1768 L45 Firmware +22
NVD
EPSS 6% CVSS 7.5
HIGH This Week

An attacker could send crafted SMTP packets to cause a denial-of-service condition where the controller enters a major non-recoverable faulted state (MNRF) in CompactLogix 5370 L1, L2, and L3. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow Compactlogix 5370 L1 Firmware +4
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy