Rockwellautomation: >> Controllogix 5580 Firmware >> 33.017 Security Vulnerabilities
CVE-2024-7515 IMPACT
A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major nonrecoverable fault in the controller.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-08-14
CVE-2024-7507 IMPACT
A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC message is received, causing a fault in the controller.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-08-14
An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Control systems. Studio 5000 Logix Designer writes user-readable program code to a separate location than the executed compiled code, allowing an attacker to change one and not the other.
CVSS Score
10.0
EPSS Score
0.003
Published
2022-04-11
Rockwell Automation Studio 5000 Logix Designer (all versions) are vulnerable when an attacker who achieves administrator access on a workstation running Studio 5000 Logix Designer could inject controller code undetectable to a user.
CVSS Score
7.7
EPSS Score
0.0
Published
2022-04-01