CVE-2024-6077 - Vulnerability Details

Vendors	Products
Rockwellautomation	1756-en4 1756-en4 Firmware Compact Guardlogix 5380 Sil2 Firmware Compact Guardlogix 5380 Sil3 Firmware Compact Guardlogix 5380 Sil 2 Compact Guardlogix 5380 Sil 2 Firmware Compact Guardlogix 5380 Sil 3 Compact Guardlogix 5380 Sil 3 Firmware Compactlogix 5380 Compactlogix 5380 Firmware Compactlogix 5380 Process Firmware Compactlogix 5480 Compactlogix 5480 Firmware Controllogix 5580 Controllogix 5580 Firmware Controllogix 5580 Process Firmware Guardlogix 5580 Guardlogix 5580 Firmware

Link	Providers
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html

Type	Values Removed	Values Added
First Time appeared		Rockwellautomation 1756-en4 Rockwellautomation compact Guardlogix 5380 Sil 2 Rockwellautomation compact Guardlogix 5380 Sil 2 Firmware Rockwellautomation compact Guardlogix 5380 Sil 3 Rockwellautomation compact Guardlogix 5380 Sil 3 Firmware Rockwellautomation compactlogix 5380 Rockwellautomation compactlogix 5480 Rockwellautomation controllogix 5580 Rockwellautomation guardlogix 5580
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:h:rockwellautomation:1756-en4:-:::::::* cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_2:-:::::::* cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_3:-:::::::* cpe:2.3:h:rockwellautomation:compactlogix_5380:-:::::::* cpe:2.3:h:rockwellautomation:compactlogix_5480:-:::::::* cpe:2.3:h:rockwellautomation:controllogix_5580:-:::::::* cpe:2.3:h:rockwellautomation:guardlogix_5580:-:::::::* cpe:2.3:o:rockwellautomation:1756-en4_firmware:2.001:::::::* cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_2_firmware:32.013:::::::* cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_3_firmware:32.011:::::::* cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:32.011:::::::* cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:32.011:::::::* cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:33.011:::::::* cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:32.011:::::::*
Vendors & Products		Rockwellautomation 1756-en4 Rockwellautomation compact Guardlogix 5380 Sil 2 Rockwellautomation compact Guardlogix 5380 Sil 2 Firmware Rockwellautomation compact Guardlogix 5380 Sil 3 Rockwellautomation compact Guardlogix 5380 Sil 3 Firmware Rockwellautomation compactlogix 5380 Rockwellautomation compactlogix 5480 Rockwellautomation controllogix 5580 Rockwellautomation guardlogix 5580
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}`

Type	Values Removed	Values Added
First Time appeared		Rockwellautomation Rockwellautomation 1756-en4 Firmware Rockwellautomation compact Guardlogix 5380 Sil2 Firmware Rockwellautomation compact Guardlogix 5380 Sil3 Firmware Rockwellautomation compactlogix 5380 Firmware Rockwellautomation compactlogix 5380 Process Firmware Rockwellautomation compactlogix 5480 Firmware Rockwellautomation controllogix 5580 Firmware Rockwellautomation controllogix 5580 Process Firmware Rockwellautomation guardlogix 5580 Firmware
CPEs		cpe:2.3:o:rockwellautomation:1756-en4_firmware:::::::: cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil2_firmware:::::::: cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil3_firmware:::::::: cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:::::::: cpe:2.3:o:rockwellautomation:compactlogix_5380_process_firmware:::::::: cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:::::::: cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:::::::: cpe:2.3:o:rockwellautomation:controllogix_5580_process_firmware:::::::: cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware::::::::
Vendors & Products		Rockwellautomation Rockwellautomation 1756-en4 Firmware Rockwellautomation compact Guardlogix 5380 Sil2 Firmware Rockwellautomation compact Guardlogix 5380 Sil3 Firmware Rockwellautomation compactlogix 5380 Firmware Rockwellautomation compactlogix 5380 Process Firmware Rockwellautomation compactlogix 5480 Firmware Rockwellautomation controllogix 5580 Firmware Rockwellautomation controllogix 5580 Process Firmware Rockwellautomation guardlogix 5580 Firmware
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Type	Values Removed	Values Added
Description		A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover.
Title		Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP
Weaknesses		CWE-20
References		https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html
Metrics		cvssV4_0 `{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}`

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-6077", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "state": "PUBLISHED", "assignerShortName": "Rockwell", "dateReserved": "2024-06-17T16:21:32.155Z", "datePublished": "2024-09-12T19:59:40.368Z", "dateUpdated": "2024-09-12T21:01:50.254Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "CompactLogix 5380", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.32 .011"}]}, {"defaultStatus": "unaffected", "product": "CompactLogix 5380 Process", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.33.011"}]}, {"defaultStatus": "unaffected", "product": "Compact GuardLogix 5380 SIL 2", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.32.013"}]}, {"defaultStatus": "unaffected", "product": "Compact GuardLogix 5380 SIL 3", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.32.011"}]}, {"defaultStatus": "unaffected", "product": "CompactLogix 5480", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.32.011"}]}, {"defaultStatus": "unaffected", "product": "ControlLogix\u00ae 5580", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.32.011"}]}, {"defaultStatus": "unaffected", "product": "ControlLogix\u00ae 5580 Process", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.33.011"}]}, {"defaultStatus": "unaffected", "product": "GuardLogix 5580", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v.32.011"}]}, {"defaultStatus": "unaffected", "product": "1756-EN4", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "v2.001"}]}], "datePublic": "2024-09-12T13:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover. </span>"}], "value": "A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover."}], "impacts": [{"capecId": "CAPEC-153", "descriptions": [{"lang": "en", "value": "CAPEC-153 Input Data Manipulation"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 8.7, "baseSeverity": "HIGH", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-09-12T20:07:19.806Z"}, "references": [{"url": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<table><tbody><tr><td><p>Affected Family </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>First Known in Software/Firmware Version</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>Corrected in Software/Firmware Version</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>CompactLogix 5380</p><p>&nbsp;</p><p>&nbsp;</p><p>&nbsp;</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32 .011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>CompactLogix 5380 Process </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.33.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>Compact GuardLogix 5380 SIL 2 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.013</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>Compact GuardLogix 5380 SIL 3 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>CompactLogix 5480 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>ControlLogix\u00ae 5580 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>ControlLogix\u00ae 5580 Process </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.33.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>GuardLogix 5580 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>1756-EN4</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v2.001</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v6.001 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr></tbody></table><p>&nbsp;</p>\n\n\n\n<p>Mitigations and Workarounds <br>Customers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. </p><ul><li><p>Users who do not wish to use CIP security can disable the feature per device. See \"Disable CIP Security\" in Chapter 2 of \"CIP Security with Rockwell Automation Products\" (publication SECURE-AT001)</p></li></ul><p>For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested <a target=\"_blank\" rel=\"nofollow\" href=\"https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight\">security best practices</a>&nbsp;to minimize the risk of the vulnerability. Customers can use <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc\">Stakeholder-Specific Vulnerability Categorization</a>&nbsp;to generate more environment-specific prioritization.</p>\n\n<br>"}], "value": "Affected Family \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nFirst Known in Software/Firmware Version\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCorrected in Software/Firmware Version\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompactLogix 5380\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32 .011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompactLogix 5380 Process \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.33.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompact GuardLogix 5380 SIL 2 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.013\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompact GuardLogix 5380 SIL 3 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompactLogix 5480 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nControlLogix\u00ae 5580 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nControlLogix\u00ae 5580 Process \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.33.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nGuardLogix 5580 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n1756-EN4\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv2.001\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv6.001 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\n\n\n\nMitigations and Workarounds \nCustomers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. \n\n  *  Users who do not wish to use CIP security can disable the feature per device. See \"Disable CIP Security\" in Chapter 2 of \"CIP Security with Rockwell Automation Products\" (publication SECURE-AT001)\n\n\n\n\nFor information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested  security best practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight \u00a0to minimize the risk of the vulnerability. Customers can use  Stakeholder-Specific Vulnerability Categorization https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc \u00a0to generate more environment-specific prioritization."}], "source": {"advisory": "SD1963", "discovery": "INTERNAL"}, "title": "Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix\u00ae 5380 Vulnerable to DoS vulnerability via CIP", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"affected": [{"vendor": "rockwellautomation", "product": "compactlogix_5480_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil3_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "32 .011", "status": "affected", "lessThan": "33.017", "versionType": "custom"}, {"version": "34.0", "status": "affected", "lessThan": "34.014", "versionType": "custom"}, {"version": "35.0", "status": "affected", "lessThan": "35.013", "versionType": "custom"}, {"version": "36.0", "status": "affected", "lessThan": "36.011", "versionType": "custom"}]}, {"vendor": "rockwellautomation", "product": "compactlogix_5380_process_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5580_process_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compactlogix_5380_process_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "33.011", "status": "affected", "lessThan": "33.017", "versionType": "custom"}, {"version": "34.0", "status": "affected", "lessThan": "34.014", "versionType": "custom"}, {"version": "35.0", "status": "affected", "lessThan": "35.013", "versionType": "custom"}, {"version": "36.0", "status": "affected", "lessThan": "36.011", "versionType": "custom"}]}, {"vendor": "rockwellautomation", "product": "compact_guardlogix_5380_sil2_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil2_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "32.013", "status": "affected", "lessThan": "33.017", "versionType": "custom"}, {"version": "34.0", "status": "affected", "lessThan": "34.014", "versionType": "custom"}, {"version": "35.0", "status": "affected", "lessThan": "35.013", "versionType": "custom"}, {"version": "36.0", "status": "affected", "lessThan": "36.011", "versionType": "custom"}]}, {"vendor": "rockwellautomation", "product": "1756-en4_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:1756-en4_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "2.001", "status": "affected", "lessThan": "6.001", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-12T20:22:58.224200Z", "id": "CVE-2024-6077", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-12T21:01:50.254Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2024-6077 (string)

assignerOrgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

state : PUBLISHED (string)

assignerShortName : Rockwell (string)

dateReserved : 2024-06-17T16:21:32.155Z (string)

datePublished : 2024-09-12T19:59:40.368Z (string)

dateUpdated : 2024-09-12T21:01:50.254Z (string)

}

containers : { »

cna : { »

affected : [ »

0 : { »

defaultStatus : unaffected (string)

product : CompactLogix 5380 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32 .011 (string)

}

]

}

1 : { »

defaultStatus : unaffected (string)

product : CompactLogix 5380 Process (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.33.011 (string)

}

]

}

2 : { »

defaultStatus : unaffected (string)

product : Compact GuardLogix 5380 SIL 2 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.013 (string)

}

]

}

3 : { »

defaultStatus : unaffected (string)

product : Compact GuardLogix 5380 SIL 3 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

}

4 : { »

defaultStatus : unaffected (string)

product : CompactLogix 5480 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

}

5 : { »

defaultStatus : unaffected (string)

product : ControlLogix® 5580 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

}

6 : { »

defaultStatus : unaffected (string)

product : ControlLogix® 5580 Process (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.33.011 (string)

}

]

}

7 : { »

defaultStatus : unaffected (string)

product : GuardLogix 5580 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

}

8 : { »

defaultStatus : unaffected (string)

product : 1756-EN4 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : v2.001 (string)

}

]

}

]

datePublic : 2024-09-12T13:00:00.000Z (string)

descriptions : [ »

0 : { »

lang : en (string)

supportingMedia : [ »

0 : { »

base64 : false (boolean)

type : text/html (string)

value : A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover. (string)

}

]

value : A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover. (string)

}

]

impacts : [ »

0 : { »

capecId : CAPEC-153 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : CAPEC-153 Input Data Manipulation (string)

}

]

}

]

metrics : [ »

0 : { »

cvssV4_0 : { »

Automatable : NOT_DEFINED (string)

Recovery : NOT_DEFINED (string)

Safety : NOT_DEFINED (string)

attackComplexity : LOW (string)

attackRequirements : NONE (string)

attackVector : NETWORK (string)

baseScore : 8.7 (number)

baseSeverity : HIGH (string)

privilegesRequired : NONE (string)

providerUrgency : NOT_DEFINED (string)

subAvailabilityImpact : NONE (string)

subConfidentialityImpact : NONE (string)

subIntegrityImpact : NONE (string)

userInteraction : NONE (string)

valueDensity : NOT_DEFINED (string)

vectorString : CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N (string)

version : 4.0 (string)

vulnAvailabilityImpact : HIGH (string)

vulnConfidentialityImpact : NONE (string)

vulnIntegrityImpact : NONE (string)

vulnerabilityResponseEffort : NOT_DEFINED (string)

}

format : CVSS (string)

scenarios : [ »

0 : { »

lang : en (string)

value : GENERAL (string)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

cweId : CWE-20 (string)

description : CWE-20 Improper Input Validation (string)

lang : en (string)

type : CWE (string)

}

]

}

]

providerMetadata : { »

orgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

shortName : Rockwell (string)

dateUpdated : 2024-09-12T20:07:19.806Z (string)

}

references : [ »

0 : { »

url : https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html (string)

}

]

solutions : [ »

0 : { »

lang : en (string)

supportingMedia : [ »

0 : { »

base64 : false (boolean)

type : text/html (string)

value : <table><tbody><tr><td>Affected Family   </td><td>  First Known in Software/Firmware Version  </td><td>  Corrected in Software/Firmware Version  </td></tr><tr><td>  CompactLogix 5380     </td><td>  v.32 .011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  CompactLogix 5380 Process   </td><td>  v.33.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  Compact GuardLogix 5380 SIL 2   </td><td>  v.32.013  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  Compact GuardLogix 5380 SIL 3   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  CompactLogix 5480   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  ControlLogix® 5580   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  ControlLogix® 5580 Process   </td><td>  v.33.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  GuardLogix 5580   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  1756-EN4  </td><td>  v2.001  </td><td>  v6.001 and later  </td></tr></tbody></table>  Mitigations and Workarounds Customers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. <ul><li>Users who do not wish to use CIP security can disable the feature per device. See "Disable CIP Security" in Chapter 2 of "CIP Security with Rockwell Automation Products" (publication SECURE-AT001)</li></ul>For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested <a target="_blank" rel="nofollow" href="https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight">security best practices</a> to minimize the risk of the vulnerability. Customers can use <a target="_blank" rel="nofollow" href="https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc">Stakeholder-Specific Vulnerability Categorization</a> to generate more environment-specific prioritization. (string)

}

]

value : Affected Family First Known in Software/Firmware Version Corrected in Software/Firmware Version CompactLogix 5380 v.32 .011 v33.017, v34.014, v35.013, v36.011 and later CompactLogix 5380 Process v.33.011 v33.017, v34.014, v35.013, v36.011 and later Compact GuardLogix 5380 SIL 2 v.32.013 v33.017, v34.014, v35.013, v36.011 and later Compact GuardLogix 5380 SIL 3 v.32.011 v33.017, v34.014, v35.013, v36.011 and later CompactLogix 5480 v.32.011 v33.017, v34.014, v35.013, v36.011 and later ControlLogix® 5580 v.32.011 v33.017, v34.014, v35.013, v36.011 and later ControlLogix® 5580 Process v.33.011 v33.017, v34.014, v35.013, v36.011 and later GuardLogix 5580 v.32.011 v33.017, v34.014, v35.013, v36.011 and later 1756-EN4 v2.001 v6.001 and later Mitigations and Workarounds Customers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. * Users who do not wish to use CIP security can disable the feature per device. See "Disable CIP Security" in Chapter 2 of "CIP Security with Rockwell Automation Products" (publication SECURE-AT001) For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested security best practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight to minimize the risk of the vulnerability. Customers can use Stakeholder-Specific Vulnerability Categorization https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc to generate more environment-specific prioritization. (string)

}

]

source : { »

advisory : SD1963 (string)

discovery : INTERNAL (string)

}

title : Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP (string)

x_generator : { »

engine : Vulnogram 0.2.0 (string)

}

adp : [ »

0 : { »

affected : [ »

0 : { »

vendor : rockwellautomation (string)

product : compactlogix_5480_firmware (string)

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:*:*:*:*:*:*:*:* (string)

1 : cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:*:*:*:*:*:*:*:* (string)

2 : cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil3_firmware:*:*:*:*:*:*:*:* (string)

3 : cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:*:*:*:*:*:*:*:* (string)

4 : cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unaffected (string)

versions : [ »

0 : { »

version : 32 .011 (string)

status : affected (string)

lessThan : 33.017 (string)

versionType : custom (string)

}

1 : { »

version : 34.0 (string)

status : affected (string)

lessThan : 34.014 (string)

versionType : custom (string)

}

2 : { »

version : 35.0 (string)

status : affected (string)

lessThan : 35.013 (string)

versionType : custom (string)

}

3 : { »

version : 36.0 (string)

status : affected (string)

lessThan : 36.011 (string)

versionType : custom (string)

}

]

}

1 : { »

vendor : rockwellautomation (string)

product : compactlogix_5380_process_firmware (string)

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:controllogix_5580_process_firmware:*:*:*:*:*:*:*:* (string)

1 : cpe:2.3:o:rockwellautomation:compactlogix_5380_process_firmware:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unaffected (string)

versions : [ »

0 : { »

version : 33.011 (string)

status : affected (string)

lessThan : 33.017 (string)

versionType : custom (string)

}

1 : { »

version : 34.0 (string)

status : affected (string)

lessThan : 34.014 (string)

versionType : custom (string)

}

2 : { »

version : 35.0 (string)

status : affected (string)

lessThan : 35.013 (string)

versionType : custom (string)

}

3 : { »

version : 36.0 (string)

status : affected (string)

lessThan : 36.011 (string)

versionType : custom (string)

}

]

}

2 : { »

vendor : rockwellautomation (string)

product : compact_guardlogix_5380_sil2_firmware (string)

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil2_firmware:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unaffected (string)

versions : [ »

0 : { »

version : 32.013 (string)

status : affected (string)

lessThan : 33.017 (string)

versionType : custom (string)

}

1 : { »

version : 34.0 (string)

status : affected (string)

lessThan : 34.014 (string)

versionType : custom (string)

}

2 : { »

version : 35.0 (string)

status : affected (string)

lessThan : 35.013 (string)

versionType : custom (string)

}

3 : { »

version : 36.0 (string)

status : affected (string)

lessThan : 36.011 (string)

versionType : custom (string)

}

]

}

3 : { »

vendor : rockwellautomation (string)

product : 1756-en4_firmware (string)

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:1756-en4_firmware:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unaffected (string)

versions : [ »

0 : { »

version : 2.001 (string)

status : affected (string)

lessThan : 6.001 (string)

versionType : custom (string)

}

]

}

]

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-09-12T20:22:58.224200Z (string)

id : CVE-2024-6077 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-09-12T21:01:50.254Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-6077", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-12T20:22:58.224200Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil3_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:*:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "compactlogix_5480_firmware", "versions": [{"status": "affected", "version": "32 .011", "lessThan": "33.017", "versionType": "custom"}, {"status": "affected", "version": "34.0", "lessThan": "34.014", "versionType": "custom"}, {"status": "affected", "version": "35.0", "lessThan": "35.013", "versionType": "custom"}, {"status": "affected", "version": "36.0", "lessThan": "36.011", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5580_process_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:rockwellautomation:compactlogix_5380_process_firmware:*:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "compactlogix_5380_process_firmware", "versions": [{"status": "affected", "version": "33.011", "lessThan": "33.017", "versionType": "custom"}, {"status": "affected", "version": "34.0", "lessThan": "34.014", "versionType": "custom"}, {"status": "affected", "version": "35.0", "lessThan": "35.013", "versionType": "custom"}, {"status": "affected", "version": "36.0", "lessThan": "36.011", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil2_firmware:*:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "compact_guardlogix_5380_sil2_firmware", "versions": [{"status": "affected", "version": "32.013", "lessThan": "33.017", "versionType": "custom"}, {"status": "affected", "version": "34.0", "lessThan": "34.014", "versionType": "custom"}, {"status": "affected", "version": "35.0", "lessThan": "35.013", "versionType": "custom"}, {"status": "affected", "version": "36.0", "lessThan": "36.011", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:rockwellautomation:1756-en4_firmware:*:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "1756-en4_firmware", "versions": [{"status": "affected", "version": "2.001", "lessThan": "6.001", "versionType": "custom"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-12T20:31:09.370Z"}}], "cna": {"title": "Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix\u00ae 5380 Vulnerable to DoS vulnerability via CIP", "source": {"advisory": "SD1963", "discovery": "INTERNAL"}, "impacts": [{"capecId": "CAPEC-153", "descriptions": [{"lang": "en", "value": "CAPEC-153 Input Data Manipulation"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.7, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Rockwell Automation", "product": "CompactLogix 5380", "versions": [{"status": "affected", "version": "v.32 .011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "CompactLogix 5380 Process", "versions": [{"status": "affected", "version": "v.33.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "Compact GuardLogix 5380 SIL 2", "versions": [{"status": "affected", "version": "v.32.013"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "Compact GuardLogix 5380 SIL 3", "versions": [{"status": "affected", "version": "v.32.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "CompactLogix 5480", "versions": [{"status": "affected", "version": "v.32.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "ControlLogix\u00ae 5580", "versions": [{"status": "affected", "version": "v.32.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "ControlLogix\u00ae 5580 Process", "versions": [{"status": "affected", "version": "v.33.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "GuardLogix 5580", "versions": [{"status": "affected", "version": "v.32.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "1756-EN4", "versions": [{"status": "affected", "version": "v2.001"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Affected Family \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nFirst Known in Software/Firmware Version\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCorrected in Software/Firmware Version\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompactLogix 5380\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32 .011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompactLogix 5380 Process \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.33.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompact GuardLogix 5380 SIL 2 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.013\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompact GuardLogix 5380 SIL 3 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nCompactLogix 5480 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nControlLogix\u00ae 5580 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nControlLogix\u00ae 5580 Process \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.33.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nGuardLogix 5580 \n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv.32.011\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv33.017, v34.014, v35.013, v36.011 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n1756-EN4\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv2.001\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\nv6.001 and later\n\n\u00a0\n\n\u00a0\n\n\u00a0\n\n\n\n\n\nMitigations and Workarounds \nCustomers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. \n\n  *  Users who do not wish to use CIP security can disable the feature per device. See \"Disable CIP Security\" in Chapter 2 of \"CIP Security with Rockwell Automation Products\" (publication SECURE-AT001)\n\n\n\n\nFor information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested  security best practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight \u00a0to minimize the risk of the vulnerability. Customers can use  Stakeholder-Specific Vulnerability Categorization https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc \u00a0to generate more environment-specific prioritization.", "supportingMedia": [{"type": "text/html", "value": "<table><tbody><tr><td><p>Affected Family </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>First Known in Software/Firmware Version</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>Corrected in Software/Firmware Version</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>CompactLogix 5380</p><p>&nbsp;</p><p>&nbsp;</p><p>&nbsp;</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32 .011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>CompactLogix 5380 Process </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.33.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>Compact GuardLogix 5380 SIL 2 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.013</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>Compact GuardLogix 5380 SIL 3 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>CompactLogix 5480 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>ControlLogix\u00ae 5580 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>ControlLogix\u00ae 5580 Process </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.33.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>GuardLogix 5580 </p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v.32.011</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v33.017, v34.014, v35.013, v36.011 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr><tr><td><p>&nbsp;</p><p>&nbsp;</p><p>1756-EN4</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v2.001</p><p>&nbsp;</p><p>&nbsp;</p></td><td><p>&nbsp;</p><p>&nbsp;</p><p>v6.001 and later</p><p>&nbsp;</p><p>&nbsp;</p></td></tr></tbody></table><p>&nbsp;</p>\n\n\n\n<p>Mitigations and Workarounds <br>Customers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. </p><ul><li><p>Users who do not wish to use CIP security can disable the feature per device. See \"Disable CIP Security\" in Chapter 2 of \"CIP Security with Rockwell Automation Products\" (publication SECURE-AT001)</p></li></ul><p>For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested <a target=\"_blank\" rel=\"nofollow\" href=\"https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight\">security best practices</a>&nbsp;to minimize the risk of the vulnerability. Customers can use <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc\">Stakeholder-Specific Vulnerability Categorization</a>&nbsp;to generate more environment-specific prioritization.</p>\n\n<br>", "base64": false}]}], "datePublic": "2024-09-12T13:00:00.000Z", "references": [{"url": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover. </span>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "CWE-20 Improper Input Validation"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-09-12T20:07:19.806Z"}}}, "cveMetadata": {"cveId": "CVE-2024-6077", "state": "PUBLISHED", "dateUpdated": "2024-09-12T21:01:50.254Z", "dateReserved": "2024-06-17T16:21:32.155Z", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "datePublished": "2024-09-12T19:59:40.368Z", "assignerShortName": "Rockwell"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-6077 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-09-12T20:22:58.224200Z (string)

}

]

affected : [ »

0 : { »

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:*:*:*:*:*:*:*:* (string)

1 : cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:*:*:*:*:*:*:*:* (string)

2 : cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil3_firmware:*:*:*:*:*:*:*:* (string)

3 : cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:*:*:*:*:*:*:*:* (string)

4 : cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:*:*:*:*:*:*:*:* (string)

]

vendor : rockwellautomation (string)

product : compactlogix_5480_firmware (string)

versions : [ »

0 : { »

status : affected (string)

version : 32 .011 (string)

lessThan : 33.017 (string)

versionType : custom (string)

}

1 : { »

status : affected (string)

version : 34.0 (string)

lessThan : 34.014 (string)

versionType : custom (string)

}

2 : { »

status : affected (string)

version : 35.0 (string)

lessThan : 35.013 (string)

versionType : custom (string)

}

3 : { »

status : affected (string)

version : 36.0 (string)

lessThan : 36.011 (string)

versionType : custom (string)

}

]

defaultStatus : unaffected (string)

}

1 : { »

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:controllogix_5580_process_firmware:*:*:*:*:*:*:*:* (string)

1 : cpe:2.3:o:rockwellautomation:compactlogix_5380_process_firmware:*:*:*:*:*:*:*:* (string)

]

vendor : rockwellautomation (string)

product : compactlogix_5380_process_firmware (string)

versions : [ »

0 : { »

status : affected (string)

version : 33.011 (string)

lessThan : 33.017 (string)

versionType : custom (string)

}

1 : { »

status : affected (string)

version : 34.0 (string)

lessThan : 34.014 (string)

versionType : custom (string)

}

2 : { »

status : affected (string)

version : 35.0 (string)

lessThan : 35.013 (string)

versionType : custom (string)

}

3 : { »

status : affected (string)

version : 36.0 (string)

lessThan : 36.011 (string)

versionType : custom (string)

}

]

defaultStatus : unaffected (string)

}

2 : { »

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil2_firmware:*:*:*:*:*:*:*:* (string)

]

vendor : rockwellautomation (string)

product : compact_guardlogix_5380_sil2_firmware (string)

versions : [ »

0 : { »

status : affected (string)

version : 32.013 (string)

lessThan : 33.017 (string)

versionType : custom (string)

}

1 : { »

status : affected (string)

version : 34.0 (string)

lessThan : 34.014 (string)

versionType : custom (string)

}

2 : { »

status : affected (string)

version : 35.0 (string)

lessThan : 35.013 (string)

versionType : custom (string)

}

3 : { »

status : affected (string)

version : 36.0 (string)

lessThan : 36.011 (string)

versionType : custom (string)

}

]

defaultStatus : unaffected (string)

}

3 : { »

cpes : [ »

0 : cpe:2.3:o:rockwellautomation:1756-en4_firmware:*:*:*:*:*:*:*:* (string)

]

vendor : rockwellautomation (string)

product : 1756-en4_firmware (string)

versions : [ »

0 : { »

status : affected (string)

version : 2.001 (string)

lessThan : 6.001 (string)

versionType : custom (string)

}

]

defaultStatus : unaffected (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-09-12T20:31:09.370Z (string)

}

]

cna : { »

title : Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP (string)

source : { »

advisory : SD1963 (string)

discovery : INTERNAL (string)

}

impacts : [ »

0 : { »

capecId : CAPEC-153 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : CAPEC-153 Input Data Manipulation (string)

}

]

}

]

metrics : [ »

0 : { »

format : CVSS (string)

cvssV4_0 : { »

Safety : NOT_DEFINED (string)

version : 4.0 (string)

Recovery : NOT_DEFINED (string)

baseScore : 8.7 (number)

Automatable : NOT_DEFINED (string)

attackVector : NETWORK (string)

baseSeverity : HIGH (string)

valueDensity : NOT_DEFINED (string)

vectorString : CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N (string)

providerUrgency : NOT_DEFINED (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

attackRequirements : NONE (string)

privilegesRequired : NONE (string)

subIntegrityImpact : NONE (string)

vulnIntegrityImpact : NONE (string)

subAvailabilityImpact : NONE (string)

vulnAvailabilityImpact : HIGH (string)

subConfidentialityImpact : NONE (string)

vulnConfidentialityImpact : NONE (string)

vulnerabilityResponseEffort : NOT_DEFINED (string)

}

scenarios : [ »

0 : { »

lang : en (string)

value : GENERAL (string)

}

]

}

]

affected : [ »

0 : { »

vendor : Rockwell Automation (string)

product : CompactLogix 5380 (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32 .011 (string)

}

]

defaultStatus : unaffected (string)

}

1 : { »

vendor : Rockwell Automation (string)

product : CompactLogix 5380 Process (string)

versions : [ »

0 : { »

status : affected (string)

version : v.33.011 (string)

}

]

defaultStatus : unaffected (string)

}

2 : { »

vendor : Rockwell Automation (string)

product : Compact GuardLogix 5380 SIL 2 (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.013 (string)

}

]

defaultStatus : unaffected (string)

}

3 : { »

vendor : Rockwell Automation (string)

product : Compact GuardLogix 5380 SIL 3 (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

defaultStatus : unaffected (string)

}

4 : { »

vendor : Rockwell Automation (string)

product : CompactLogix 5480 (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

defaultStatus : unaffected (string)

}

5 : { »

vendor : Rockwell Automation (string)

product : ControlLogix® 5580 (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

defaultStatus : unaffected (string)

}

6 : { »

vendor : Rockwell Automation (string)

product : ControlLogix® 5580 Process (string)

versions : [ »

0 : { »

status : affected (string)

version : v.33.011 (string)

}

]

defaultStatus : unaffected (string)

}

7 : { »

vendor : Rockwell Automation (string)

product : GuardLogix 5580 (string)

versions : [ »

0 : { »

status : affected (string)

version : v.32.011 (string)

}

]

defaultStatus : unaffected (string)

}

8 : { »

vendor : Rockwell Automation (string)

product : 1756-EN4 (string)

versions : [ »

0 : { »

status : affected (string)

version : v2.001 (string)

}

]

defaultStatus : unaffected (string)

}

]

solutions : [ »

0 : { »

lang : en (string)

value : Affected Family First Known in Software/Firmware Version Corrected in Software/Firmware Version CompactLogix 5380 v.32 .011 v33.017, v34.014, v35.013, v36.011 and later CompactLogix 5380 Process v.33.011 v33.017, v34.014, v35.013, v36.011 and later Compact GuardLogix 5380 SIL 2 v.32.013 v33.017, v34.014, v35.013, v36.011 and later Compact GuardLogix 5380 SIL 3 v.32.011 v33.017, v34.014, v35.013, v36.011 and later CompactLogix 5480 v.32.011 v33.017, v34.014, v35.013, v36.011 and later ControlLogix® 5580 v.32.011 v33.017, v34.014, v35.013, v36.011 and later ControlLogix® 5580 Process v.33.011 v33.017, v34.014, v35.013, v36.011 and later GuardLogix 5580 v.32.011 v33.017, v34.014, v35.013, v36.011 and later 1756-EN4 v2.001 v6.001 and later Mitigations and Workarounds Customers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. * Users who do not wish to use CIP security can disable the feature per device. See "Disable CIP Security" in Chapter 2 of "CIP Security with Rockwell Automation Products" (publication SECURE-AT001) For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested security best practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight to minimize the risk of the vulnerability. Customers can use Stakeholder-Specific Vulnerability Categorization https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc to generate more environment-specific prioritization. (string)

supportingMedia : [ »

0 : { »

type : text/html (string)

value : <table><tbody><tr><td>Affected Family   </td><td>  First Known in Software/Firmware Version  </td><td>  Corrected in Software/Firmware Version  </td></tr><tr><td>  CompactLogix 5380     </td><td>  v.32 .011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  CompactLogix 5380 Process   </td><td>  v.33.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  Compact GuardLogix 5380 SIL 2   </td><td>  v.32.013  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  Compact GuardLogix 5380 SIL 3   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  CompactLogix 5480   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  ControlLogix® 5580   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  ControlLogix® 5580 Process   </td><td>  v.33.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  GuardLogix 5580   </td><td>  v.32.011  </td><td>  v33.017, v34.014, v35.013, v36.011 and later  </td></tr><tr><td>  1756-EN4  </td><td>  v2.001  </td><td>  v6.001 and later  </td></tr></tbody></table>  Mitigations and Workarounds Customers who are unable to upgrade to the corrected software versions are encouraged to apply the following risk mitigations. <ul><li>Users who do not wish to use CIP security can disable the feature per device. See "Disable CIP Security" in Chapter 2 of "CIP Security with Rockwell Automation Products" (publication SECURE-AT001)</li></ul>For information on how to mitigate Security Risks on industrial automation control systems, we encourage customers to implement our suggested <a target="_blank" rel="nofollow" href="https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight">security best practices</a> to minimize the risk of the vulnerability. Customers can use <a target="_blank" rel="nofollow" href="https://www.cisa.gov/stakeholder-specific-vulnerability-categorization-ssvc">Stakeholder-Specific Vulnerability Categorization</a> to generate more environment-specific prioritization. (string)

base64 : false (boolean)

}

]

}

]

datePublic : 2024-09-12T13:00:00.000Z (string)

references : [ »

0 : { »

url : https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html (string)

}

]

x_generator : { »

engine : Vulnogram 0.2.0 (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover. (string)

supportingMedia : [ »

0 : { »

type : text/html (string)

value : A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover. (string)

base64 : false (boolean)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : CWE (string)

cweId : CWE-20 (string)

description : CWE-20 Improper Input Validation (string)

}

]

}

]

providerMetadata : { »

orgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

shortName : Rockwell (string)

dateUpdated : 2024-09-12T20:07:19.806Z (string)

}

cveMetadata : { »

cveId : CVE-2024-6077 (string)

state : PUBLISHED (string)

dateUpdated : 2024-09-12T21:01:50.254Z (string)

dateReserved : 2024-06-17T16:21:32.155Z (string)

assignerOrgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

datePublished : 2024-09-12T19:59:40.368Z (string)

assignerShortName : Rockwell (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:32.011:*:*:*:*:*:*:*", "matchCriteriaId": "D389E07F-A04E-467A-8FE4-4DE8B69EF7EC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compactlogix_5380:-:*:*:*:*:*:*:*", "matchCriteriaId": "EDD040ED-B44C-47D0-B4D4-729C378C4F68", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_2_firmware:32.013:*:*:*:*:*:*:*", "matchCriteriaId": "CCF40770-68D8-41E8-B0DC-61BEFD2DA987", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_2:-:*:*:*:*:*:*:*", "matchCriteriaId": "E594CDF6-0582-4D5C-B6AA-C8A2E752E29F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_3_firmware:32.011:*:*:*:*:*:*:*", "matchCriteriaId": "7F2345A8-E3BD-45C2-AEE8-189C81D6C23F", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_3:-:*:*:*:*:*:*:*", "matchCriteriaId": "B82D842C-0930-41AA-83CD-5F235771AE4B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:32.011:*:*:*:*:*:*:*", "matchCriteriaId": "D7EB2F5A-34D4-49C6-9B58-632DFA6B69E4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compactlogix_5480:-:*:*:*:*:*:*:*", "matchCriteriaId": "80F4F5BE-07DF-402A-BF98-34FBA6A11968", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:33.011:*:*:*:*:*:*:*", "matchCriteriaId": "F032C078-D896-47EC-8393-10803E832C18", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:controllogix_5580:-:*:*:*:*:*:*:*", "matchCriteriaId": "51BB883B-B863-4D57-B1C0-FC7B3EBD1EA0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:32.011:*:*:*:*:*:*:*", "matchCriteriaId": "BAE872BB-FC1F-4B70-92AD-B1213A347C89", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:guardlogix_5580:-:*:*:*:*:*:*:*", "matchCriteriaId": "006B7683-9FDF-4748-BA28-2EA22613E092", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:1756-en4_firmware:2.001:*:*:*:*:*:*:*", "matchCriteriaId": "B389BA8B-56CD-4614-BC77-02FC80981FA1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:1756-en4:-:*:*:*:*:*:*:*", "matchCriteriaId": "6935642C-4CBF-4B4F-A509-561B3E39A66B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover."}, {"lang": "es", "value": "Existe una vulnerabilidad de denegaci\u00f3n de servicio en los productos afectados de Rockwell Automation cuando se env\u00edan paquetes especialmente manipulados al objeto de seguridad CIP. Si se explota, el dispositivo dejar\u00e1 de estar disponible y ser\u00e1 necesario restablecer la configuraci\u00f3n de f\u00e1brica para recuperarse."}], "id": "CVE-2024-6077", "lastModified": "2024-09-19T14:31:18.463", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "automatable": "NOT_DEFINED", "availabilityRequirements": "NOT_DEFINED", "baseScore": 8.7, "baseSeverity": "HIGH", "confidentialityRequirements": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "recovery": "NOT_DEFINED", "safety": "NOT_DEFINED", "subsequentSystemAvailability": "NONE", "subsequentSystemConfidentiality": "NONE", "subsequentSystemIntegrity": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnerabilityResponseEffort": "NOT_DEFINED", "vulnerableSystemAvailability": "HIGH", "vulnerableSystemConfidentiality": "NONE", "vulnerableSystemIntegrity": "NONE"}, "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}]}, "published": "2024-09-12T20:15:05.440", "references": [{"source": "PSIRT@rockwellautomation.com", "tags": ["Vendor Advisory"], "url": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html"}], "sourceIdentifier": "PSIRT@rockwellautomation.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-20"}], "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:32.011:*:*:*:*:*:*:* (string)

matchCriteriaId : D389E07F-A04E-467A-8FE4-4DE8B69EF7EC (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:rockwellautomation:compactlogix_5380:-:*:*:*:*:*:*:* (string)

matchCriteriaId : EDD040ED-B44C-47D0-B4D4-729C378C4F68 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_2_firmware:32.013:*:*:*:*:*:*:* (string)

matchCriteriaId : CCF40770-68D8-41E8-B0DC-61BEFD2DA987 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_2:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E594CDF6-0582-4D5C-B6AA-C8A2E752E29F (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_sil_3_firmware:32.011:*:*:*:*:*:*:* (string)

matchCriteriaId : 7F2345A8-E3BD-45C2-AEE8-189C81D6C23F (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:rockwellautomation:compact_guardlogix_5380_sil_3:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B82D842C-0930-41AA-83CD-5F235771AE4B (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:32.011:*:*:*:*:*:*:* (string)

matchCriteriaId : D7EB2F5A-34D4-49C6-9B58-632DFA6B69E4 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:rockwellautomation:compactlogix_5480:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 80F4F5BE-07DF-402A-BF98-34FBA6A11968 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

4 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:rockwellautomation:controllogix_5580_firmware:33.011:*:*:*:*:*:*:* (string)

matchCriteriaId : F032C078-D896-47EC-8393-10803E832C18 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:rockwellautomation:controllogix_5580:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 51BB883B-B863-4D57-B1C0-FC7B3EBD1EA0 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

5 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:32.011:*:*:*:*:*:*:* (string)

matchCriteriaId : BAE872BB-FC1F-4B70-92AD-B1213A347C89 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:rockwellautomation:guardlogix_5580:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 006B7683-9FDF-4748-BA28-2EA22613E092 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

6 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:rockwellautomation:1756-en4_firmware:2.001:*:*:*:*:*:*:* (string)

matchCriteriaId : B389BA8B-56CD-4614-BC77-02FC80981FA1 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:rockwellautomation:1756-en4:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6935642C-4CBF-4B4F-A509-561B3E39A66B (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailable and require a factory reset to recover. (string)

}

1 : { »

lang : es (string)

value : Existe una vulnerabilidad de denegación de servicio en los productos afectados de Rockwell Automation cuando se envían paquetes especialmente manipulados al objeto de seguridad CIP. Si se explota, el dispositivo dejará de estar disponible y será necesario restablecer la configuración de fábrica para recuperarse. (string)

}

]

id : CVE-2024-6077 (string)

lastModified : 2024-09-19T14:31:18.463 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

cvssMetricV40 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackRequirements : NONE (string)

attackVector : NETWORK (string)

automatable : NOT_DEFINED (string)

availabilityRequirements : NOT_DEFINED (string)

baseScore : 8.7 (number)

baseSeverity : HIGH (string)

confidentialityRequirements : NOT_DEFINED (string)

exploitMaturity : NOT_DEFINED (string)

integrityRequirements : NOT_DEFINED (string)

modifiedAttackComplexity : NOT_DEFINED (string)

modifiedAttackRequirements : NOT_DEFINED (string)

modifiedAttackVector : NOT_DEFINED (string)

modifiedPrivilegesRequired : NOT_DEFINED (string)

modifiedSubsequentSystemAvailability : NOT_DEFINED (string)

modifiedSubsequentSystemConfidentiality : NOT_DEFINED (string)

modifiedSubsequentSystemIntegrity : NOT_DEFINED (string)

modifiedUserInteraction : NOT_DEFINED (string)

modifiedVulnerableSystemAvailability : NOT_DEFINED (string)

modifiedVulnerableSystemConfidentiality : NOT_DEFINED (string)

modifiedVulnerableSystemIntegrity : NOT_DEFINED (string)

privilegesRequired : NONE (string)

providerUrgency : NOT_DEFINED (string)

recovery : NOT_DEFINED (string)

safety : NOT_DEFINED (string)

subsequentSystemAvailability : NONE (string)

subsequentSystemConfidentiality : NONE (string)

subsequentSystemIntegrity : NONE (string)

userInteraction : NONE (string)

valueDensity : NOT_DEFINED (string)

vectorString : CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X (string)

version : 4.0 (string)

vulnerabilityResponseEffort : NOT_DEFINED (string)

vulnerableSystemAvailability : HIGH (string)

vulnerableSystemConfidentiality : NONE (string)

vulnerableSystemIntegrity : NONE (string)

}

source : PSIRT@rockwellautomation.com (string)

type : Secondary (string)

}

]

}

published : 2024-09-12T20:15:05.440 (string)

references : [ »

0 : { »

source : PSIRT@rockwellautomation.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1963.html (string)

}

]

sourceIdentifier : PSIRT@rockwellautomation.com (string)

vulnStatus : Analyzed (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-noinfo (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-20 (string)

}

]

source : PSIRT@rockwellautomation.com (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object