Lucene search

RockwellCVE-2024-21916

HistoryJan 31, 2024 - 7:15 p.m.

CVE-2024-21916

2024-01-3119:15:08

CWE-119

Rockwell

web.nvd.nist.gov

cve-2024-21916

vulnerability

denial-of-service

rockwell automation

controllogix

guardlogix

nvd

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

EPSS

0.001

Percentile

17.9%

JSON

A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.

Affected configurations

Nvd

Node

rockwellautomationcontrollogix_5570_controllerMatch-

AND

rockwellautomationcontrollogix_5570_controller_firmwareMatch20.011

Node

rockwellautomationguardlogix_5570_controllerMatch-

AND

rockwellautomationguardlogix_5570_controller_firmwareMatch20.011

Node

rockwellautomationcontrollogix_5570_redundant_controllerMatch-

AND

rockwellautomationcontrollogix_5570_redundant_controller_firmwareMatch20.054_kit1

VendorProductVersionCPE
rockwellautomationcontrollogix_5570_controller-cpe:2.3:h:rockwellautomation:controllogix_5570_controller:-:*:*:*:*:*:*:*
rockwellautomationcontrollogix_5570_controller_firmware20.011cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*
rockwellautomationguardlogix_5570_controller-cpe:2.3:h:rockwellautomation:guardlogix_5570_controller:-:*:*:*:*:*:*:*
rockwellautomationguardlogix_5570_controller_firmware20.011cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*
rockwellautomationcontrollogix_5570_redundant_controller-cpe:2.3:h:rockwellautomation:controllogix_5570_redundant_controller:-:*:*:*:*:*:*:*
rockwellautomationcontrollogix_5570_redundant_controller_firmware20.054_kit1cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
rockwellautomation	controllogix_5570_controller	-	cpe:2.3:h:rockwellautomation:controllogix_5570_controller:-:::::::*
rockwellautomation	controllogix_5570_controller_firmware	20.011	cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:::::::*
rockwellautomation	guardlogix_5570_controller	-	cpe:2.3:h:rockwellautomation:guardlogix_5570_controller:-:::::::*
rockwellautomation	guardlogix_5570_controller_firmware	20.011	cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:::::::*
rockwellautomation	controllogix_5570_redundant_controller	-	cpe:2.3:h:rockwellautomation:controllogix_5570_redundant_controller:-:::::::*
rockwellautomation	controllogix_5570_redundant_controller_firmware	20.054_kit1	cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:::::::*

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "ControlLogix® 5570",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "20.011"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "GuardLogix® 5570",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "20.011"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "ControlLogix® 5570 redundant",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "20.054_kit1"
      }
    ]
  }
]