ICSA-11-273-03A
·
Published 2025-06-05
·
View on CISA ICS-CERT ↗
Rockwell RSLogix Overflow Vulnerability
CVSS 5.0
MEDIUM
CVEs (1)
Remediations
- Rockwell Automation recommends that concerned customers using FactoryTalk Services Platform Versions CPR9 and CPR9-SR1 through SR4 and customers using RSLogix versions V17, V18, and V19 apply patch AID 458689. (http://rockwellautomation.custhelp.com/app/answers/detail/a_id/458689) Customers using FactoryTalk Services Platform CPR7 and earlier, and RSLogix 5000 V16 and earlier, are not affected by this vulnerability.
- For full patching instructions and additional information, refer to Rockwell Automation Security Advisory KB 456144. (http://rockwellautomation.custhelp.com/app/answers/detail/a_id/456144)
Affected Vendors
Rockwell Automation
Affected Products (3)
Rockwell Automation
·
RSLogix 5000 software
17|18|19
Rockwell Automation
·
All FactoryTalk-branded software of specific
CPR9
Rockwell Automation
·
All FactoryTalk-branded software of specific
>=CPR9-SR1|<=CPR9-SR4
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more