ICSA-18-009-01
·
Published 2018-01-09
·
View on CISA ICS-CERT ↗
Rockwell Automation Allen-Bradley MicroLogix 1400 Controllers
CVSS 8.6
HIGH
Risk Summary
ATTENTION: Remotely exploitable/low skill level to exploit.
CVEs (1)
Remediations
- Rockwell Automation encourages affected users to upgrade to the latest version of available firmware, FRN 21.003
- Rockwell Automation also suggests that Modbus TCP can be disabled if it is not necessary in the implementation of the device to mitigate the vulnerability.
- For more information, Rockwell Automation has released a security bulletin that can be accessed using valid credentials
Affected Vendors
Rockwell Automation
Affected Products (7)
Rockwell Automation
·
Allen-Bradley MicroLogix 1400 Controllers
1766-L32AWAA
Rockwell Automation
·
MicroLogix 1400 Controllers Series B and C
<= 21.002
Rockwell Automation
·
Allen-Bradley MicroLogix 1400 Controllers
1766-L32AWA
Rockwell Automation
·
Allen-Bradley MicroLogix 1400 Controllers
1766-L32BWAA
Rockwell Automation
·
Allen-Bradley MicroLogix 1400 Controllers
1766-L32BXBA
Rockwell Automation
·
Allen-Bradley MicroLogix 1400 Controllers
1766-L32BXB
Rockwell Automation
·
Allen-Bradley MicroLogix 1400 Controllers
1766-L32BWA
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more