CVE-2017-7898 in MicroLogix 1100info

Summary

An Improper Restriction of Excessive Authentication Attempts issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. There are no penalties for repeatedly entering incorrect passwords.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

04/18/2017

Disclosure

06/29/2017

Moderation

VulDB entry created

Entries

VDB-101761 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

8.0

EPSS

0.01143

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7898
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7898
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7898/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!