Описание
The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspecified function, which allows remote attackers to cause a denial of service (service outage) via a crafted packet.
Ссылки
- US Government Resource
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:rockwellautomation:factorytalk:cpr9:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:factorytalk:cpr9_sr5:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_5000:17:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_5000:18:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_5000:19:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:rslogix_5000:20:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01046
Низкий
5 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation Allen-Bradley FactoryTalk CPR9 through SR5 and RSLogix 5000 17 through 20 does not properly handle the return value from an unspecified function, which allows remote attackers to cause a denial of service (service outage) via a crafted packet.
EPSS
Процентиль: 77%
0.01046
Низкий
5 Medium
CVSS2
Дефекты
CWE-20