Rockwellautomation: >> 1756-En2tr Series B Firmware >> 5.028 Security Vulnerabilities
A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable (MNFR) fault. This condition may lead to unexpected system crashes and loss of device availability.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-09-09
A security issue exists in the protected mode of EN4TR devices, where sending specifically crafted messages during a Forward Close operation can cause the device to crash.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-09-09
A buffer overflow vulnerability exists in the Rockwell Automation select 1756-EN* communication devices. If exploited, a threat actor could potentially leverage this vulnerability to perform a remote code execution. To exploit this vulnerability, a threat actor would have to send a maliciously crafted CIP request to device.
CVSS Score
9.8
EPSS Score
0.045
Published
2023-09-20