Vulnerability Details CVE-2024-5659
Rockwell Automation was made aware of a vulnerability that causes all affected controllers on the same network to result in a major nonrecoverable fault(MNRF/Assert). This vulnerability could be exploited by sending abnormal packets to the mDNS port. If exploited, the availability of the device would be compromised.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.7%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2024-5659
-
cpe:2.3:h:rockwellautomation:1756-en4:-
-
cpe:2.3:h:rockwellautomation:compact_guardlogix_5380:-
-
cpe:2.3:h:rockwellautomation:compactlogix_5380:-
-
cpe:2.3:h:rockwellautomation:compactlogix_5480:-
-
cpe:2.3:h:rockwellautomation:controllogix_5580:-
-
cpe:2.3:h:rockwellautomation:guardlogix_5580:-
-
cpe:2.3:o:rockwellautomation:1756-en4_firmware:4.001
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:34.011
-
cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:34.011
-
cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:34.011
-
cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:34.011
-
cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:34.011