ICSA-16-026-02
·
Published 2025-06-09
·
View on CISA ICS-CERT ↗
Rockwell Automation MicroLogix 1100 PLC Overflow Vulnerability
CVSS 9.8
CRITICAL
CVEs (1)
Remediations
- For Series B hardware, update to the latest firmware version. (http://compatibility.rockwellautomation.com/Pages/MultiProductDownload.aspx?famID=30)
- For Series A hardware, Rockwell Automation recommends to update supported products with appropriate firmware updates, and disable the web server on the MicroLogix 1100, as it is enabled by default. (https://rockwellautomation.custhelp.com/app/answers/detail/a_id/732398)
- Set the key switch to RUN to prohibit re-enabling of the web server via RSLogix 500.
- Rockwell Automation recommends subscribing to the Security Advisory Index (KB54102), which provides the most up-to-date information about security matters that affect Rockwell Automation products. (https://rockwellautomation.custhelp.com/app/answers/detail/a_id/54102)
Affected Vendors
Rockwell Automation
Affected Products (8)
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16AWA Series B
<=15.000
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16BBB Series B
<=15.000
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16BWA Series B
<=15.000
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16DWD Series B
<=15.000
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16AWA Series A
<=15.000
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16BBB Series A
<=15.000
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16BWA Series A
<=15.000
Rockwell Automation
·
MicroLogix 1100 controller 1763-L16DWD Series A
<=15.000
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more