Product:

1756\-En2tr_series_a_firmware

(Rockwellautomation)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 3
Date Id Summary Products Score Patch Annotated
2023-07-12 CVE-2023-3595 Where this vulnerability exists in the Rockwell Automation 1756 EN2* and 1756 EN3* ControlLogix communication products, it could allow a malicious user to perform remote code execution with persistence on the target system through maliciously crafted CIP messages. This includes the ability to modify, deny, and exfiltrate data passing through the device. 1756\-En2f_series_a_firmware, 1756\-En2f_series_b_firmware, 1756\-En2f_series_c_firmware, 1756\-En2t_series_a_firmware, 1756\-En2t_series_b_firmware, 1756\-En2t_series_c_firmware, 1756\-En2t_series_d_firmware, 1756\-En2tr_series_a_firmware, 1756\-En2tr_series_b_firmware, 1756\-En2tr_series_c_firmware, 1756\-En3tr_series_a_firmware, 1756\-En3tr_series_b_firmware 9.8
2023-09-20 CVE-2023-2262 A buffer overflow vulnerability exists in the Rockwell Automation select 1756-EN* communication devices. If exploited, a threat actor could potentially leverage this vulnerability to perform a remote code execution. To exploit this vulnerability, a threat actor would have to send a maliciously crafted CIP request to device. 1756\-En2f_series_a_firmware, 1756\-En2f_series_b_firmware, 1756\-En2f_series_c_firmware, 1756\-En2fk_series_a_firmware, 1756\-En2fk_series_b_firmware, 1756\-En2fk_series_c_firmware, 1756\-En2t_series_a_firmware, 1756\-En2t_series_b_firmware, 1756\-En2t_series_c_firmware, 1756\-En2t_series_d_firmware, 1756\-En2tk_series_a_firmware, 1756\-En2tk_series_b_firmware, 1756\-En2tk_series_c_firmware, 1756\-En2tp_series_a_firmware, 1756\-En2tpk_series_a_firmware, 1756\-En2tpxt_series_a_firmware, 1756\-En2tr_series_a_firmware, 1756\-En2tr_series_b_firmware, 1756\-En2tr_series_c_firmware, 1756\-En2trk_series_a_firmware, 1756\-En2trk_series_b_firmware, 1756\-En2trk_series_c_firmware, 1756\-En2trxt_series_a_firmware, 1756\-En2trxt_series_b_firmware, 1756\-En2trxt_series_c_firmware, 1756\-En2txt_series_a_firmware, 1756\-En2txt_series_b_firmware, 1756\-En2txt_series_c_firmware, 1756\-En2txt_series_d_firmware, 1756\-En3tr_series_a_firmware, 1756\-En3tr_series_b_firmware, 1756\-En3trk_series_a_firmware, 1756\-En3trk_series_b_firmware 9.8
2018-12-07 CVE-2018-17924 Rockwell Automation MicroLogix 1400 Controllers and 1756 ControlLogix Communications Modules An unauthenticated, remote threat actor could send a CIP connection request to an affected device, and upon successful connection, send a new IP configuration to the affected device even if the controller in the system is set to Hard RUN mode. When the affected device accepts this new IP configuration, a loss of communication occurs between the device and the rest of the system as the system traffic... 1756\-En2f_series_a_firmware, 1756\-En2f_series_b_firmware, 1756\-En2f_series_c_firmware, 1756\-En2t_series_a_firmware, 1756\-En2t_series_b_firmware, 1756\-En2t_series_c_firmware, 1756\-En2t_series_d_firmware, 1756\-En2tr_series_a_firmware, 1756\-En2tr_series_b_firmware, 1756\-En2tr_series_c_firmware, 1756\-En3tr_series_a_firmware, 1756\-En3tr_series_b_firmware, 1756\-Enbt_firmware, 1756\-Eweb_series_a_firmware, 1756\-Eweb_series_b_firmware, Micrologix_1400_firmware 8.6