ICSA-17-094-05
·
Published 2017-05-04
·
View on CISA ICS-CERT ↗
Rockwell Automation ControlLogix 5580 and CompactLogix 5380
CVSS 6.8
MEDIUM
Risk Summary
ATTENTION: Remotely exploitable.
CVEs (1)
Remediations
- Rockwell Automation recommends updating to the latest version of ControlLogix 5580 controllers, Version 30.011 or later, which is available at the following location:
- Rockwell Automation recommends updating to the latest version of CompactLogix 5380 controllers, Version 30.011 or later, which is available at the following location:
- For more information on this vulnerability and more detailed mitigation instructions, please see Rockwell Automation's advisory labeled ControlLogix 5580 and CompactLogix 5380 Programmable Automation Controller Denial of Service, Version 1.0, April 4, 2017, at the following location:
- As well as Rockwell Automation's security page:
Affected Vendors
Rockwell Automation
Affected Products (4)
Rockwell Automation
·
ControlLogix 5580 controllers
28.011 | 28.012 | 28.013
Rockwell Automation
·
CompactLogix 5380 controllers
29.011
Rockwell Automation
·
CompactLogix 5380 controllers
28.011
Rockwell Automation
·
ControlLogix 5580 controllers
29.011
Affected Sectors
Critical Manufacturing, Food and Agriculture, Transportation Systems, and Water
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more