Описание
Rockwell Automation EtherNet/IP Web Server Modules 1756-EWEB (includes 1756-EWEBK) Version 5.001 and earlier, and CompactLogix 1768-EWEB Version 2.005 and earlier. A remote attacker could send a crafted UDP packet to the SNMP service causing a denial-of-service condition to occur until the affected product is restarted.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 5.001 (включая)Версия до 2.005 (включая)
Одно из
cpe:2.3:a:rockwellautomation:ethernet\/ip_web_server_module_1756-eweb:*:*:*:*:*:*:*:*
cpe:2.3:a:rockwellautomation:ethernet\/ip_web_server_module_1768-eweb:*:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00041
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-20
CWE-20
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Rockwell Automation EtherNet/IP Web Server Modules 1756-EWEB (includes 1756-EWEBK) Version 5.001 and earlier, and CompactLogix 1768-EWEB Version 2.005 and earlier. A remote attacker could send a crafted UDP packet to the SNMP service causing a denial-of-service condition to occur until the affected product is restarted.
EPSS
Процентиль: 12%
0.00041
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-20
CWE-20