Rockwell Automation RSLogix 5 and RSLogix 500

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to perform remote code execution.

CVEs (1)

Remediations

• Rockwell Automation offers users the following solutions:
• Users using the affected software are encouraged to apply the following mitigations and security best practices, where possible:
• Deny the execution feature in FactoryTalk Administration Console, when not needed, by navigating to "Policies", selecting ‘"Enable/Disable VBA", and then checking the "Deny" box to block VBA code execution.
• Save project files in a Trusted location where only administrators can modify it and verify file integrity.
• Utilize the VBA editor protection feature, which locks the VBA code from viewing and editing by setting a password.
• For more information about this issue, please see the advisory on the Rockwell Automation security page.

Affected Vendors

Affected Products (3)

Affected Sectors

Critical Manufacturing