Rockwellautomation Schwachstellen

Zeitverlauf

Typ

Automation Software	10

Produkt

Rockwellautomation CompactLogix 5370 L1	2
Rockwellautomation CompactLogix 5370 L2	2
Rockwellautomation CompactLogix 5370 L3	2
Rockwellautomation Compact GuardLogix 5370	2
Rockwellautomation Armor Compact GuardLogix 5370	2

Massnahmen

Official Fix	1
Temporary Fix	0
Workaround	2
Unavailable	0
Not Defined	7

Ausnutzbarkeit

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	10

Zugriffsart

Not Defined	0
Physical	0
Local	1
Adjacent	0
Network	9

Authentisierung

Not Defined	0
High	0
Low	0
None	10

Benutzeraktivität

Not Defined	0
Required	0
None	10

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	3
≤7	1
≤8	1
≤9	1
≤10	4

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	3
≤7	1
≤8	1
≤9	2
≤10	3

VulDB

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	4
≤7	0
≤8	2
≤9	0
≤10	4

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	1
≤9	0
≤10	1

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	7
<5k	3
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	10
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (12): 1756-ENBT series A (1), Ab Micrologix Controller (1), Ab Micrologix Controller 1100 (1), Armor Compact GuardLogix 5370 (2), Compact GuardLogix 5370 (2), CompactLogix 5370 L1 (2), CompactLogix 5370 L2 (2), CompactLogix 5370 L3 (2), FactoryTalk (2), FactoryTalk Diagnostics Viewer (1), RSLinx Classic (1), RSLogix (1)

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
01.05.2019	6.4	6.3	Rockwellautomation Armor Compact GuardLogix 5370 SMTP Pufferüberlauf	Automation Software	Not Defined	Workaround	0.01233	0.00	CVE-2019-10954
01.05.2019	8.5	8.4	Rockwellautomation Armor Compact GuardLogix 5370 Web Server Pufferüberlauf	Automation Software	Not Defined	Workaround	0.01029	0.03	CVE-2019-10952
08.12.2012	7.5	7.5	Rockwellautomation Ab Micrologix Controller Denial of Service	Automation Software	Not Defined	Not Defined	0.00283	0.00	CVE-2012-4690
02.04.2012	5.3	5.3	Rockwellautomation FactoryTalk Pufferüberlauf	Automation Software	Not Defined	Not Defined	0.00081	0.02	CVE-2012-0222
02.04.2012	5.3	5.3	Rockwellautomation FactoryTalk unspecified erweiterte Rechte	Automation Software	Not Defined	Not Defined	0.10097	0.00	CVE-2012-0221
16.09.2011	5.3	5.3	Rockwellautomation RSLogix Utility RsvcHost.exe Pufferüberlauf	Automation Software	Not Defined	Not Defined	0.00766	0.00	CVE-2011-3489
28.07.2011	9.3	8.9	Rockwellautomation FactoryTalk Diagnostics Viewer Configuration File Pufferüberlauf	Automation Software	Not Defined	Official Fix	0.00043	0.00	CVE-2011-2957
22.06.2011	10.0	10.0	Rockwellautomation RSLinx Classic Installation RSHWare.exe Pufferüberlauf	Automation Software	Not Defined	Not Defined	0.01412	0.00	CVE-2011-2530
05.08.2010	10.0	10.0	Rockwellautomation 1756-ENBT series A Firmware perform erweiterte Rechte	Automation Software	Not Defined	Not Defined	0.48259	0.02	CVE-2010-2965
19.01.2010	9.8	9.8	Rockwellautomation Ab Micrologix Controller 1100 Denial of Service	Automation Software	Not Defined	Not Defined	0.00161	0.02	CVE-2009-3739

◂ ZurückÜbersichtWeiter ▸

Do you need the next level of professionalism?

Upgrade your account now!