Description
A specific malformed fragmented packet type (fragmented packets may be generated automatically by devices that send large amounts of data) can cause a major nonrecoverable fault (MNRF) Rockwell Automation's ControlLogix 5580, Guard Logix 5580, CompactLogix 5380, and 1756-EN4TR. If exploited, the affected product will become unavailable and require a manual restart to recover it. Additionally, an MNRF could result in a loss of view and/or control of connected devices.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Rockwell Automation / 1756-EN4TRv5.001 – v5.001
- Rockwell Automation / CompactLogix 5380v5.001 – v5.001
- Rockwell Automation / ControlLogix® 5580v35.011 – v35.011
- Rockwell Automation / GuardLogix 5580v35.011 – v35.011