Vulnerability Details CVE-2017-12088
An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladder logic. An attacker can send one unauthenticated packet to trigger this vulnerability
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.3%
CVSS Severity
CVSS v3 Score 8.6
CVSS v2 Score 7.8
References
Products affected by CVE-2017-12088
-
cpe:2.3:h:rockwellautomation:micrologix_1400:-
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:-
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:11.000
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:12.001
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:13.000
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:13.003
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:14.000
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:14.002
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.000
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.001
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.002
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.003
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.004
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.005
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:16.000
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:16.001
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:16.002
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:21.000
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:21.001
-
cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:21.002