CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-9312

Improperly implemented option-field processing in the TCP/IP stack on Allen-Bradley L30ERMS safety devices v30 and earlier causes a denial of service. When a crafted TCP packet is received, the device reboots immediately.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 7.8

References

http://www.securityfocus.com/bid/104528
https://ics-cert.us-cert.gov/advisories/ICSA-18-172-02
http://www.securityfocus.com/bid/104528
https://ics-cert.us-cert.gov/advisories/ICSA-18-172-02

Products affected by CVE-2017-9312

Rockwellautomation » Allen-Bradley L30erms » Version: N/A

cpe:2.3:h:rockwellautomation:allen-bradley_l30erms:-
Rockwellautomation » Allen-Bradley L30erms Firmware » Version: N/A

cpe:2.3:o:rockwellautomation:allen-bradley_l30erms_firmware:-
Rockwellautomation » Allen-Bradley L30erms Firmware » Version: 30

cpe:2.3:o:rockwellautomation:allen-bradley_l30erms_firmware:30

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9312

Products

Pricing

Contact Us