214
CVEs
37
Critical
134
High
1
KEV
19
PoC
159
Unpatched C/H
7.0%
Patch Rate
4.4%
Avg EPSS
Severity Breakdown
CRITICAL
37
HIGH
134
MEDIUM
38
LOW
5
Monthly CVE Trend
Affected Products (30)
Arena
38
Thinmanager
13
Micrologix 1100 Firmware
12
Armorstart St 281E Firmware
10
Factorytalk View
10
Armorstart St 284Ee Firmware
10
Compactlogix 5380 Firmware
8
Factorytalk Services Platform
8
Micrologix 1400 Firmware
8
Controllogix 5580 Firmware
7
Guardlogix 5580 Firmware
7
Compactlogix 5480 Firmware
7
Compact Guardlogix 5380 Firmware
7
1763 L16Bbb Series B
6
1763 L16Bbb Series A
6
1763 L16Dwd Series B
6
Micrologix 1400 A Firmware
6
1763 L16Awa Series A
6
1763 L16Bwa Series A
6
1763 L16Bwa Series B
6
1763 L16Awa Series B
6
Micrologix 1400 B Firmware
6
1763 L16Dwd Series A
6
1766 L32Awaa Series A
5
1766 L32Bxb Series A
5
Factorytalk Policy Manager
5
1766 L32Awaa Series B
5
1766 L32Bxb Series B
5
1766 L32Bwaa Series A
5
Thinmanager Thinserver
5
Top Risky CVEs
| CVE | Summary | Severity | CVSS | EPSS | Priority | Signals |
|---|---|---|---|---|---|---|
| CVE-2020-12028 | In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with the data on the remote endpoint since those handlers do not enforce. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 8.1 | 51.0% | 76 |
PoC
No patch
|
| CVE-2020-12029 | All versions of FactoryTalk View SE do not properly validate input of filenames within a project directory. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 7.8 | 45.0% | 74 |
PoC
No patch
|
| CVE-2018-14829 | Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | CRITICAL | 9.8 | 16.1% | 69 |
PoC
No patch
|
| CVE-2023-27855 | In affected versions, a path traversal exists when processing a message in Rockwell Automation's ThinManager ThinServer. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available. | CRITICAL | 9.8 | 13.5% | 69 |
PoC
No patch
|
| CVE-2023-2917 | The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available. | CRITICAL | 9.8 | 67.8% | 69 |
PoC
No patch
|
| CVE-2017-7924 | An Improper Input Validation issue was discovered in Rockwell Automation MicroLogix 1100 controllers 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and 1763-L16DWD. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 7.5 | 10.0% | 67 |
PoC
No patch
|
| CVE-2016-5645 | Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 30.3% and no vendor patch available. | HIGH | 7.3 | 30.3% | 67 |
No patch
|
| CVE-2023-2915 | The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, Due to improper input validation, a path traversal vulnerability exists when the ThinManager. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available. | CRITICAL | 9.1 | 78.1% | 66 |
PoC
No patch
|
| CVE-2012-6437 | The device does not properly authenticate users and the potential exists for a remote user to upload a new firmware image to the Ethernet card, whether it is a corrupt or legitimate firmware image. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 11.8% and no vendor patch available. | CRITICAL | 9.8 | 11.8% | 61 |
No patch
|
| CVE-2018-19616 | An issue was discovered in Rockwell Automation Allen-Bradley PowerMonitor 1000. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available. | HIGH | 8.1 | 30.3% | 60 |
PoC
No patch
|
| CVE-2018-14821 | Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 7.5 | 4.5% | 58 |
PoC
No patch
|
| CVE-2020-6083 | An exploitable denial of service vulnerability exists in the ENIP Request Path Port Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 7.5 | 3.5% | 58 |
PoC
No patch
|
| CVE-2020-6086 | An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 7.5 | 3.6% | 58 |
PoC
No patch
|
| CVE-2020-6087 | An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 7.5 | 3.6% | 58 |
PoC
No patch
|
| CVE-2020-6084 | An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available. | HIGH | 7.5 | 3.5% | 58 |
PoC
No patch
|