Vulnerability Details CVE-2024-6077
A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.9%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2024-6077
-
cpe:2.3:h:rockwellautomation:1756-en4:-
-
cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_2:-
-
cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_3:-
-
cpe:2.3:h:rockwellautomation:compactlogix_5380:-
-
cpe:2.3:h:rockwellautomation:compactlogix_5480:-
-
cpe:2.3:h:rockwellautomation:controllogix_5580:-
-
cpe:2.3:h:rockwellautomation:guardlogix_5580:-
-
cpe:2.3:o:rockwellautomation:1756-en4_firmware:2.001
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_2_firmware:32.013
-
cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_3_firmware:32.011
-
cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:32.011
-
cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:32.011
-
cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:33.011
-
cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:32.011