Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected device’s Modbus TCP Server AOI information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Rockwell

Published: 2023-03-17T16:52:21.564Z

Updated: 2024-08-02T04:54:32.559Z

Reserved: 2022-12-29T14:01:39.460Z

Link: CVE-2023-0027

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-03-17T17:15:11.307

Modified: 2024-11-21T07:36:25.453

Link: CVE-2023-0027

cve-icon Redhat

No data.