Rockwellautomation Compactlogix 5380 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Rockwellautomation Compactlogix 5380 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2022-1161 — CVSS 10.0 (critical): An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix…
CVE-2022-3752 — CVSS 8.6 (high): An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a…
CVE-2024-3493 — CVSS 8.6 (high): A specific malformed fragmented packet type (fragmented packets may be generated automatically by devices that send large amounts of data)…
CVE-2022-1159 — CVSS 7.7 (high): Rockwell Automation Studio 5000 Logix Designer (all versions) are vulnerable when an attacker who achieves administrator access on a…
CVE-2024-7515 — CVSS 7.5 (high): CVE-2024-7515 IMPACT A denial-of-service vulnerability exists in the affected products. A malformed PTP management packet can cause a major…
CVE-2024-8626 — CVSS 7.5 (high): Due to a memory leak, a denial-of-service vulnerability exists in the Rockwell Automation affected products. A malicious actor could…
CVE-2024-6077 — CVSS 7.5 (high): A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP…
CVE-2024-6207 — CVSS 7.5 (high): CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html and send a specially crafted…
CVE-2022-1797 — CVSS 6.8 (medium): A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell…
CVE-2024-5659 — CVSS 6.5 (medium): Rockwell Automation was made aware of a vulnerability that causes all affected controllers on the same network to result in a major…
CVE-2024-7507 — CVSS 6.5 (medium): CVE-2024-7507 IMPACT A denial-of-service vulnerability exists in the affected products. This vulnerability occurs when a malformed PCCC…
CVE-2017-6024 — CVSS 5.9 (medium): A Resource Exhaustion issue was discovered in Rockwell Automation ControlLogix 5580 controllers V28.011, V28.012, and V28.013; ControlLogix…