Vulnerability Details CVE-2022-3157
A vulnerability exists in the Rockwell Automation controllers that allows a malformed CIP request to cause a major non-recoverable fault (MNRF) and a denial-of-service condition (DOS).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.1%
CVSS Severity
CVSS v3 Score 8.6
References
Products affected by CVE-2022-3157
-
cpe:2.3:h:rockwellautomation:compact_guardlogix_5370:-
-
cpe:2.3:h:rockwellautomation:compact_guardlogix_5380:-
-
cpe:2.3:h:rockwellautomation:compactlogix_5370:-
-
cpe:2.3:h:rockwellautomation:controllogix_5570:-
-
cpe:2.3:h:rockwellautomation:controllogix_5570_redundancy:-
-
cpe:2.3:h:rockwellautomation:guardlogix_5570:-
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5370_firmware:30.014
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:31.011
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:32.011
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:32.012
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:32.013
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:32.016
-
cpe:2.3:o:rockwellautomation:compactlogix_5370_firmware:*
-
cpe:2.3:o:rockwellautomation:controllogix_5570_firmware:*
-
cpe:2.3:o:rockwellautomation:controllogix_5570_redundancy_firmware:*
-
cpe:2.3:o:rockwellautomation:guardlogix_5570_firmware:*