ICSA-25-035-02
·
Published 2025-02-18
·
View on CISA ICS-CERT ↗
Rockwell Automation GuardLogix 5380 and 5580 (Update A)
CVSS 6.5
MEDIUM
Risk Summary
Successful exploitation of this vulnerability could allow a remote, non-privileged user to send malicious requests resulting in a major nonrecoverable fault causing a denial-of-service condition.
CVEs (1)
Remediations
- Rockwell Automation recommends users of the affected software to apply the following risk mitigations, if possible.
- Update to V33.017, V34.014, V35.013, V36.011, or the latest version.
- Restrict access to the task object via CIP Security and Hard Run.
- For information on how to mitigate security risks on industrial automation control systems, Rockwell Automation encourages users to implement their suggested security best practices to minimize the risk of the vulnerability.
- Stakeholder-Specific Vulnerability Categorization can be used to generate more environment-specific prioritization.
- For more information about this issue, please see the advisory on the Rockwell Automation security page.
Affected Vendors
Rockwell Automation
Affected Products (8)
Rockwell Automation
·
GuardLogix 5580 (SIL 3 with the safety partner 3)
<V33.017
Rockwell Automation
·
GuardLogix 5580 (SIL 3 with the safety partner 3)
<V34.014
Rockwell Automation
·
GuardLogix 5580 (SIL 3 with the safety partner 3)
<V35.013
Rockwell Automation
·
GuardLogix 5580 (SIL 3 with the safety partner 3)
<V36.011
Rockwell Automation
·
Compact GuardLogix 5380 SIL 3
<V33.017
Rockwell Automation
·
Compact GuardLogix 5380 SIL 3
<V34.014
Rockwell Automation
·
Compact GuardLogix 5380 SIL 3
<V35.013
Rockwell Automation
·
Compact GuardLogix 5380 SIL 3
<V36.011
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more