Rockwell Automation Vulnérabilités

Chronologie

Taper

Automation Software	153

Produit

Rockwell Automation ArmorStart ST	10
Rockwell Automation MicroLogix 1400	10
Rockwell Automation MicroLogix 1100	9
Rockwell Automation FactoryTalk AssetCentre	9
Rockwell Automation ThinManager ThinServer	8

Contre-mesures

Official Fix	23
Temporary Fix	0
Workaround	9
Unavailable	0
Not Defined	121

Exploitabilité

High	0
Functional	0
Proof-of-Concept	6
Unproven	0
Not Defined	147

Vecteur d'accès

Not Defined	0
Physical	0
Local	19
Adjacent	8
Network	126

Authentification

Not Defined	0
High	8
Low	37
None	108

Interaction de l'utilisateur

Not Defined	0
Required	46
None	107

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	7
≤5	14
≤6	21
≤7	33
≤8	39
≤9	23
≤10	15

CVSSv3 Temp

≤1	0
≤2	0
≤3	1
≤4	7
≤5	17
≤6	20
≤7	32
≤8	40
≤9	21
≤10	15

VulDB

≤1	0
≤2	0
≤3	9
≤4	17
≤5	13
≤6	29
≤7	16
≤8	44
≤9	10
≤10	15

NVD

≤1	0
≤2	0
≤3	1
≤4	3
≤5	4
≤6	6
≤7	8
≤8	26
≤9	10
≤10	19

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	8
≤6	7
≤7	7
≤8	34
≤9	14
≤10	18

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	28
<2k	72
<5k	52
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	1

Exploiter aujourd'hui

<1k	115
<2k	29
<5k	8
<10k	0
<25k	0
<50k	1
<100k	0
≥100k	0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (106): 0x (1), 1734-AENTR Series B (2), 1734-AENTR Series C (2), 1747-L5x (1), 1756 EN2 (1), 1756 EN3 (1), 1756-EN4 (1), 1756-EN4TR (1), 1768 CompactLogix (1), 1769 CompactLogix (1), 5000 Logix Designer (4), 5015-AENFTXT (1), A Ethernet (3), Allen-Bradley CompactLogix 1769-L (1), Arena (2), Arena Simulation (6), Arena Simulation Software (7), Arena Simulation Software Cat. 9502-Ax (1), Armor PowerFlex (1), ArmorStart ST (10), Automation Connected Components Workbench (1), Compact GuardLogix (1), Compact GuardLogix 5370 (1), Compact GuardLogix 5380 (2), CompactLogix (1), CompactLogix 1768-EWEB (1), CompactLogix 5370 (2), CompactLogix 5370 L1 (2), CompactLogix 5370 L2 (1), CompactLogix 5370 L3 (1), CompactLogix 5380 (3), CompactLogix 5480 (2), CompactLogix GuardLogix (1), Connected Component Workbench (1), Connected Components Workbench (5), ControlFLASH (4), ControlFLASH Plus (4), ControlLogix (2), ControlLogix 5550 (1), ControlLogix 5560 (1), ControlLogix 5570 (3), ControlLogix 5580 (3), Controllogix 1756-ENBT (3), DriveLogix 5730 (1), DriveTools SP (1), Drives AOP (1), Enhanced HIM (1), EtherNet-IP Web Server Module 1756-EWEB (1), FactoryTalk (2), FactoryTalk AssetCentre (9), FactoryTalk Asset Centre (4), FactoryTalk Diagnostics Viewer (1), FactoryTalk Linx (8), FactoryTalk Linx CommDTM (4), FactoryTalk Service Platform (2), FactoryTalk Services Platform (7), FactoryTalk System Services (3), FactoryTalk Transaction Manager (1), FactoryTalk VantagePoint (3), FactoryTalk View ME (1), FactoryTalk View SE (5), FactoryTalk View SEA (1), FactoryTalk View Site Edition (1), Flex IO (1), FlexLogix 1794-L34 (1), GuardLogix (2), GuardLogix 5560 (1), GuardLogix 5570 (2), GuardLogix 5580 (3), IP Bridge (3), ISaGRAF (1), ISaGRAF Runtime (5), ISaGRAF Workbench (4), Kinetix 5500 (1), Kinetix 5700 (1), Logix5000 (1), Logix Controllers (1), Logix Designer Studio 5000 (1), Micro800 (1), MicroLogix (2), MicroLogix 1100 (10), MicroLogix 1400 (11), Modbus TCP Server AOI (1), PLC5 (1), PanelView 5510 (1), PanelView Plus (1), Pavilion8 (1), PowerFlex 525 AC Drives (1), PowerFlex 527 (3), PowerMonitor (1), PowerMonitor 1000 (2), RSLinx Classic (7), RSLinx Enterprise (2), RSLinx Enterprise Software (1), RSLogix 500 (4), RSLogix 1785-Lx (1), RSLogix 5000 (1), SLC5 (1), Safety Instrumented Systems Workstation (1), SoftLogix 5800 (1), Studio 5000 Launcher (4), Studio 5000 Logix Designer (1), Studio 5000 Logix Emulate (1), ThinManager (1), ThinManager ThinServer (8), select 1756-EN (1)

Publié	Base	Temp	Vulnérabilité	Prod	Exp	Con	EPSS	CTI	CVE
16/04/2024	8.0	8.0	Rockwell Automation ControlLogix 5580 Fragmented Packet dénie de service	Automation Software	Not Defined	Not Defined	0.00043	0.09	CVE-2024-3493
12/04/2024	7.5	7.2	Rockwell Automation 5015-AENFTXT Secondary Adapter dénie de service	Automation Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-2424
26/03/2024	8.3	8.3	Rockwell Automation Arena Simulation buffer overflow	Automation Software	Not Defined	Not Defined	0.00043	0.00	CVE-2024-2929
26/03/2024	8.3	8.3	Rockwell Automation Arena Simulation buffer overflow	Automation Software	Not Defined	Not Defined	0.00043	0.02	CVE-2024-21913
26/03/2024	5.4	5.4	Rockwell Automation Arena Simulation divulgation de l'information	Automation Software	Not Defined	Not Defined	0.00043	0.06	CVE-2024-21920
26/03/2024	8.3	8.3	Rockwell Automation Arena Simulation Remote Code Execution	Automation Software	Not Defined	Not Defined	0.00043	0.09	CVE-2024-21919
26/03/2024	8.3	8.3	Rockwell Automation Arena Simulation buffer overflow	Automation Software	Not Defined	Not Defined	0.00043	0.02	CVE-2024-21918
26/03/2024	7.5	7.5	Rockwell Automation Arena Simulation buffer overflow	Automation Software	Not Defined	Not Defined	0.00043	0.00	CVE-2024-21912
26/03/2024	5.3	5.2	Rockwell Automation FactoryTalk View ME dénie de service	Automation Software	Not Defined	Official Fix	0.00043	0.02	CVE-2024-21914
25/03/2024	7.5	7.5	Rockwell Automation PowerFlex 527 Data Packet dénie de service	Automation Software	Not Defined	Not Defined	0.00043	0.07	CVE-2024-2427
25/03/2024	7.5	7.5	Rockwell Automation PowerFlex 527 CIP Communication dénie de service	Automation Software	Not Defined	Not Defined	0.00043	0.05	CVE-2024-2426
25/03/2024	7.5	7.5	Rockwell Automation PowerFlex 527 dénie de service	Automation Software	Not Defined	Not Defined	0.00043	0.04	CVE-2024-2425
16/02/2024	8.5	8.3	Rockwell Automation FactoryTalk Service Platform elévation de privilèges	Automation Software	Not Defined	Official Fix	0.00043	0.03	CVE-2024-21915
31/01/2024	7.5	7.5	Rockwell Automation FactoryTalk Service Platform FTSP Service authentification faible	Automation Software	Not Defined	Official Fix	0.00072	0.06	CVE-2024-21917
31/01/2024	7.9	7.8	Rockwell Automation ControlLogix 5570/GuardLogix 5570 buffer overflow	Automation Software	Not Defined	Official Fix	0.00048	0.04	CVE-2024-21916
26/10/2023	7.5	7.3	Rockwell Automation FactoryTalk View Site Edition dénie de service	Automation Software	Not Defined	Official Fix	0.00044	0.00	CVE-2023-46289
26/10/2023	8.1	7.9	Rockwell Automation FactoryTalk Services Platform authentification faible	Automation Software	Not Defined	Official Fix	0.00063	0.00	CVE-2023-46290
26/10/2023	7.5	7.4	Rockwell Automation Arena Malformed File Local Privilege Escalation	Automation Software	Not Defined	Official Fix	0.00049	0.00	CVE-2023-27858
26/10/2023	7.5	7.4	Rockwell Automation Arena Malformed File divulgation de l'information	Automation Software	Not Defined	Official Fix	0.00049	0.00	CVE-2023-27854
13/10/2023	7.5	7.5	Rockwell Automation PanelView Plus FactoryTalk Linx divulgation de l'information	Automation Software	Not Defined	Not Defined	0.00070	0.03	CVE-2023-29464
20/09/2023	9.8	9.8	Rockwell Automation select 1756-EN CIP Request buffer overflow	Automation Software	Not Defined	Not Defined	0.00138	0.03	CVE-2023-2262
13/09/2023	7.7	7.7	Rockwell Automation Pavilion8 JMX Console authentification faible	Automation Software	Not Defined	Not Defined	0.00045	0.00	CVE-2023-29463
12/09/2023	9.8	9.8	Rockwell Automation FactoryTalk elévation de privilèges	Automation Software	Not Defined	Not Defined	0.00075	0.00	CVE-2023-2071
17/08/2023	8.5	8.5	Rockwell Automation ThinManager ThinServer ThinServer.exe elévation de privilèges	Automation Software	Not Defined	Not Defined	0.00099	0.00	CVE-2023-2917
17/08/2023	6.4	6.4	Rockwell Automation ThinManager ThinServer buffer overflow	Automation Software	Not Defined	Not Defined	0.00052	0.09	CVE-2023-2914

128 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 128 results.

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!