Vulnerabilities > CVE-2017-14470 - Unspecified vulnerability in Rockwellautomation Micrologix 1400 B Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

rockwellautomation

critical

NVD

Published: 2018-04-05

Updated: 2022-04-19

Summary

An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information, modification of settings, or modification of ladder logic. An attacker can send unauthenticated packets to trigger this vulnerability. Required Keyswitch State: REMOTE or PROG or RUN Description: The value 0xffffffff is considered NaN for the Float data type. When a float is set to this value and used in the PLC, a fault is triggered. NOTE: This is not possible through RSLogix.

Vulnerable Configurations

Part	Description	Count
OS	Rockwellautomation Rockwellautomation Micrologix 1400 B Firmware - Rockwellautomation Micrologix 1400 B Firmware 11.000 Rockwellautomation Micrologix 1400 B Firmware 12.001 Rockwellautomation Micrologix 1400 B Firmware 13.000 Rockwellautomation Micrologix 1400 B Firmware 13.003 Rockwellautomation Micrologix 1400 B Firmware 14.000 Rockwellautomation Micrologix 1400 B Firmware 14.002 Rockwellautomation Micrologix 1400 B Firmware 15.000 Rockwellautomation Micrologix 1400 B Firmware 15.001 Rockwellautomation Micrologix 1400 B Firmware 15.002 Rockwellautomation Micrologix 1400 B Firmware 15.003 Rockwellautomation Micrologix 1400 B Firmware 15.004 Rockwellautomation Micrologix 1400 B Firmware 15.005 Rockwellautomation Micrologix 1400 B Firmware 16.000 Rockwellautomation Micrologix 1400 B Firmware 16.001 Rockwellautomation Micrologix 1400 B Firmware 16.002 Rockwellautomation Micrologix 1400 B Firmware 21.000 Rockwellautomation Micrologix 1400 B Firmware 21.001 Rockwellautomation Micrologix 1400 B Firmware 21.002	19
Hardware	Rockwellautomation Rockwellautomation Micrologix 1400 -	1

Talos

id	TALOS-2017-0443
last seen	2019-05-29
published	2018-03-28
reporter	Talos Intelligence
source	http://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0443
title	Allen Bradley Micrologix 1400 Series B Unauthenticated Data/Program/Function File Improper Access Control Vulnerability

References

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0443