Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected device’s Modbus TCP Server AOI information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Rockwell
Published: 2023-03-17T16:52:21.564Z
Updated: 2024-08-02T04:54:32.559Z
Reserved: 2022-12-29T14:01:39.460Z
Link: CVE-2023-0027
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-03-17T17:15:11.307
Modified: 2024-11-21T07:36:25.453
Link: CVE-2023-0027
Redhat
No data.