Vulnerability Details CVE-2017-6024
A Resource Exhaustion issue was discovered in Rockwell Automation ControlLogix 5580 controllers V28.011, V28.012, and V28.013; ControlLogix 5580 controllers V29.011; CompactLogix 5380 controllers V28.011; and CompactLogix 5380 controllers V29.011. This vulnerability may allow an attacker to cause a denial of service condition by sending a series of specific CIP-based commands to the controller.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.6%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 7.1
References
Products affected by CVE-2017-6024
-
cpe:2.3:h:rockwellautomation:compactlogix_5380:-
-
cpe:2.3:h:rockwellautomation:controllogix_5580:-
-
cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:v28.011
-
cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:v29.011
-
cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:v28.011
-
cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:v28.012
-
cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:v28.013
-
cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:v29.011