Vulnerability Details CVE-2012-6442
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and earlier; SoftLogix 18 and earlier; CompactLogix controllers 19 and earlier; SoftLogix controllers 19 and earlier; ControlLogix controllers 20 and earlier; GuardLogix controllers 20 and earlier; and MicroLogix 1100 and 1400 allow remote attackers to cause a denial of service (control and communication outage) via a CIP message that specifies a reset.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.167
EPSS Ranking 94.5%
CVSS Severity
CVSS v2 Score 7.8
References
Products affected by CVE-2012-6442
-
cpe:2.3:h:rockwellautomation:1100:-
-
cpe:2.3:h:rockwellautomation:1400:-
-
cpe:2.3:h:rockwellautomation:1756-enbt:-
-
cpe:2.3:h:rockwellautomation:1756-eweb:-
-
cpe:2.3:h:rockwellautomation:1768-enbt:-
-
cpe:2.3:h:rockwellautomation:1768-eweb:-
-
cpe:2.3:h:rockwellautomation:1788-enbt:-
-
cpe:2.3:h:rockwellautomation:1794-aentr:-
-
cpe:2.3:h:rockwellautomation:l32e:-
-
cpe:2.3:h:rockwellautomation:l35e:-
-
cpe:2.3:o:rockwellautomation:compactlogix_controllers_firmware:19
-
cpe:2.3:o:rockwellautomation:compactlogix_firmware:-
-
cpe:2.3:o:rockwellautomation:compactlogix_firmware:18
-
cpe:2.3:o:rockwellautomation:controllogix_controllers_firmware:20
-
cpe:2.3:o:rockwellautomation:controllogix_firmware:18
-
cpe:2.3:o:rockwellautomation:ethernet/ip_firmware:-
-
cpe:2.3:o:rockwellautomation:flex_i/o_ethernet/ip__firmware:-
-
cpe:2.3:o:rockwellautomation:flexlogix_firmware:-
-
cpe:2.3:o:rockwellautomation:guardlogix_controllers_firmware:20
-
cpe:2.3:o:rockwellautomation:guardlogix_firmware:18
-
cpe:2.3:o:rockwellautomation:micrologix_firmware:-
-
cpe:2.3:o:rockwellautomation:softlogix_controllers_firmware:19
-
cpe:2.3:o:rockwellautomation:softlogix_firmware:18