Описание
Improperly implemented option-field processing in the TCP/IP stack on Allen-Bradley L30ERMS safety devices v30 and earlier causes a denial of service. When a crafted TCP packet is received, the device reboots immediately.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 30 (включая)
Одновременно
cpe:2.3:o:rockwellautomation:allen-bradley_l30erms_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:rockwellautomation:allen-bradley_l30erms:-:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Improperly implemented option-field processing in the TCP/IP stack on Allen-Bradley L30ERMS safety devices v30 and earlier causes a denial of service. When a crafted TCP packet is received, the device reboots immediately.
EPSS
Процентиль: 11%
0.00038
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-20