ICSA-20-294-01 · Published 2020-10-20 · View on CISA ICS-CERT ↗

Rockwell Automation 1794-AENT Flex I/O Series B

CVSS 7.5 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could crash the device being accessed, resulting in a buffer overflow condition that may allow remote code execution.

CVEs (3)

CVE-2020-6083 CVE-2020-6084 CVE-2020-6085

Remediations

Rockwell Automation recommends affected users ensure they are employing proper network segmentation and security controls when implementing the affected product.
For more information please see the Rockwell Automation Security Advisory (login required).

Affected Vendors

Rockwell Automation

Affected Products (1)

Rockwell Automation · 1794-AENT Flex I/O Series B <= 4.003

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more