Rockwell Automation Studio 5000 Logix Designer

CVSS 7.7 HIGH

Risk Summary

Successful exploitation of this vulnerability may allow an attacker to download a modified program to the controller.

CVE-2022-1159

Rockwell Automation recommends users of the affected hardware and software take risk mitigation steps listed below. Users are encouraged, when possible, to combine this guidance with the general security guidelines for a comprehensive defense-in-depth strategy.
There is no direct mitigation for this vulnerability in the Logix Designer application. However, a detection method is available to determine if the user program residing in the controller is identical to what was downloaded.
On-demand using the Logix Designer application Compare Tool v9 or later
Scheduled using FactoryTalk AssetCentre v12 or later user program verification (Available Fall 2022)
To leverage these detection capabilities, users are directed to upgrade to Studio 5000 v34 software or later
Corresponding versions of Logix 5580, 5380, 5480, GuardLogix 5580 and Compact GuardLogix 5380 controller firmware.
Logix Designer application Compare Tool v9 or later - installed with Studio 5000 Logix Designer
FactoryTalk AssetCentre v12 or later software (Available Fall 2022)
This user program comparison must be performed on an uncompromised workstation.

Rockwell Automation

Rockwell Automation · Studio 5000 Logix Designer ControlLogix 5580 controllers vers:all/*

Rockwell Automation · Studio 5000 Logix Designer GuardLogix 5580 controllers vers:all/*

Rockwell Automation · Studio 5000 Logix Designer CompactLogix 5380 controllers vers:all/*

Rockwell Automation · Studio 5000 Logix Designer CompactLogix 5480 controllers vers:all/*

Rockwell Automation · Studio 5000 Logix Designer Compact GuardLogix 5380 controllers vers:all/*

Multiple Sectors

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.