Rockwell Automation Logix Controllers

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to execute CIP programming and configuration commands.

CVEs (1)

Remediations

• Rockwell Automation recommends user update the Logix controllers to the following:
• ControlLogix 5580 (1756-L8z): Update to versions V32.016, V33.015, V34.014,V35.011 and later.
• GuardLogix 5580 (1756-L8zS): Update to versions V32.016, V33.015, V34.014,V35.011 and later.
• 1756-EN4TR: Update to versions V5.001 and later.
• 1756-EN2T Series D, 1756-EN2F Series C, 1756-EN2TR Series C, 1756-EN3TR Series B, and 1756-EN2TP Series A: Update to version V12.001 and later
• The products 1756-EN2T Series A/B/C, 1756-EN2F Series A/B, 1756-EN2TR Series A/B, and 1756-EN3TR Series A do not have a fix available. Users can upgrade to Series D to remediate this vulnerability.
• Users that are using the affected firmware and who are not able to upgrade to one of the corrected versions are encouraged to apply the following mitigation and security best practices, where possible.
• Limit the allowed CIP commands on controllers by setting the mode switch to the RUN position.
• Security Best Practices

Affected Vendors

Affected Products (16)

Affected Sectors

Critical Manufacturing