Vulnerabilities > CVE-2021-33012 - Unspecified vulnerability in Rockwellautomation Micrologix 1100 Firmware

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

rockwellautomation

NVD

Published: 2021-07-09

Updated: 2021-07-12

Summary

Rockwell Automation MicroLogix 1100, all versions, allows a remote, unauthenticated attacker sending specially crafted commands to cause the PLC to fault when the controller is switched to RUN mode, which results in a denial-of-service condition. If successfully exploited, this vulnerability will cause the controller to fault whenever the controller is switched to RUN mode.

Vulnerable Configurations

Part	Description	Count
OS	Rockwellautomation Rockwellautomation Micrologix 1100 Firmware *	1
Hardware	Rockwellautomation Rockwellautomation Micrologix 1100 -	1

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-189-01