CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-6988

Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, A remote, unauthenticated attacker can send a request from the RSLogix 500 software to the victim’s MicroLogix controller. The controller will then respond to the client with used password values to authenticate the user on the client-side. This method of authentication may allow an attacker to bypass authentication altogether, disclose sensitive information, or leak credentials.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2020-6988

Rockwellautomation » Rslogix 500 » Version: N/A

cpe:2.3:a:rockwellautomation:rslogix_500:-
Rockwellautomation » Rslogix 500 » Version: 12.001

cpe:2.3:a:rockwellautomation:rslogix_500:12.001
Rockwellautomation » Micrologix 1100 » Version: N/A

cpe:2.3:h:rockwellautomation:micrologix_1100:-
Rockwellautomation » Micrologix 1400 » Version: N/A

cpe:2.3:h:rockwellautomation:micrologix_1400:-
Rockwellautomation » Micrologix 1100 Firmware » Version: N/A

cpe:2.3:o:rockwellautomation:micrologix_1100_firmware:-
Rockwellautomation » Micrologix 1100 Firmware » Version: 14.00

cpe:2.3:o:rockwellautomation:micrologix_1100_firmware:14.00
Rockwellautomation » Micrologix 1400 A Firmware » Version: N/A

cpe:2.3:o:rockwellautomation:micrologix_1400_a_firmware:-
Rockwellautomation » Micrologix 1400 B Firmware » Version: N/A

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:-
Rockwellautomation » Micrologix 1400 B Firmware » Version: 11.000

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:11.000
Rockwellautomation » Micrologix 1400 B Firmware » Version: 12.001

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:12.001
Rockwellautomation » Micrologix 1400 B Firmware » Version: 13.000

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:13.000
Rockwellautomation » Micrologix 1400 B Firmware » Version: 13.003

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:13.003
Rockwellautomation » Micrologix 1400 B Firmware » Version: 14.000

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:14.000
Rockwellautomation » Micrologix 1400 B Firmware » Version: 14.002

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:14.002
Rockwellautomation » Micrologix 1400 B Firmware » Version: 15.000

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.000
Rockwellautomation » Micrologix 1400 B Firmware » Version: 15.001

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.001
Rockwellautomation » Micrologix 1400 B Firmware » Version: 15.002

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.002
Rockwellautomation » Micrologix 1400 B Firmware » Version: 15.003

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.003
Rockwellautomation » Micrologix 1400 B Firmware » Version: 15.004

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.004
Rockwellautomation » Micrologix 1400 B Firmware » Version: 15.005

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:15.005
Rockwellautomation » Micrologix 1400 B Firmware » Version: 16.000

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:16.000
Rockwellautomation » Micrologix 1400 B Firmware » Version: 16.001

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:16.001
Rockwellautomation » Micrologix 1400 B Firmware » Version: 16.002

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:16.002
Rockwellautomation » Micrologix 1400 B Firmware » Version: 21.000

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:21.000
Rockwellautomation » Micrologix 1400 B Firmware » Version: 21.001

cpe:2.3:o:rockwellautomation:micrologix_1400_b_firmware:21.001

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-6988

Products

Pricing

Contact Us