Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Micrologix_1400\-A_firmware
(Rockwellautomation)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 1 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-12-16 | CVE-2022-46670 | Rockwell Automation was made aware of a vulnerability by a security researcher from Georgia Institute of Technology that the MicroLogix 1100 and 1400 controllers contain a vulnerability that may give an attacker the ability to accomplish remote code execution. The vulnerability is an unauthenticated stored cross-site scripting vulnerability in the embedded webserver. The payload is transferred to the controller over SNMP and is rendered on the homepage of the embedded website. | Micrologix_1100_firmware, Micrologix_1400\-A_firmware, Micrologix_1400\-B_firmware, Micrologix_1400\-C_firmware, Micrologix_1400_firmware | 6.1 |