Vulnerabilities > CVE-2024-2424 - Unspecified vulnerability in Rockwellautomation 5015-Aenftxt Firmware 2.011

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

rockwellautomation

NVD

Published: 2024-04-15

Updated: 2025-02-25

Summary

An input validation vulnerability exists in the Rockwell Automation 5015-AENFTXT that causes the secondary adapter to result in a major nonrecoverable fault (MNRF) when malicious input is entered. If exploited, the availability of the device will be impacted, and a manual restart is required. Additionally, a malformed PTP packet is needed to exploit this vulnerability.

Vulnerable Configurations

Part	Description	Count
OS	Rockwellautomation Rockwellautomation 5015 Aenftxt Firmware 2.011	1
Hardware	Rockwellautomation Rockwellautomation 5015 Aenftxt -	1

References

https://www.rockwellautomation.com/en-us/support/advisory.SD1667.html
https://www.rockwellautomation.com/en-us/support/advisory.SD1667.html