Latest Vulnerabilities Affecting Rockwellautomation products

Date	CVE	Title	CVSS
2019-08-15	CVE-2019-13511	Information Leak / Disclosure vulnerability in Rockwellautomation Arena Simulation Software 16.00.00	Medium
2019-08-15	CVE-2019-13510	Use After Free vulnerability in Rockwellautomation Arena Simulation Software 16.00.00	Medium
2019-07-11	CVE-2019-10970	Improper Access Control vulnerability in Rockwellautomation Panelview 5510 and Panelview 5510 Firmware	High
2019-05-01	CVE-2019-10952	Buffer Errors vulnerability in Rockwellautomation and products	High
2019-05-01	CVE-2019-10954	Buffer Errors vulnerability in Rockwellautomation and products	High
2019-04-25	CVE-2019-10955	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Rockwellautomation and products	Medium
2019-04-04	CVE-2018-19282	Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability in Rockwellautomation Powerflex 525 AC Drives Firmware 5.001	High
2019-04-04	CVE-2019-6553	Buffer Errors vulnerability in Rockwellautomation Rslinx 4.10.00	High
2019-03-27	CVE-2018-19016	Input Validation vulnerability in Rockwellautomation Ethernet/Ip WEB Server Module 1756 Eweb and Ethernet/Ip WEB Server Module 1768 Eweb	High
2019-03-26	CVE-2010-5305	Improper Access Control vulnerability in Rockwellautomation products	High
2019-03-26	CVE-2013-2805	Out-of-bounds Read vulnerability in Rockwellautomation Rslinx Enterprise	High
2019-03-26	CVE-2013-2807	Out-of-bounds Read vulnerability in Rockwellautomation Rslinx Enterprise	High
2019-03-26	CVE-2013-2806	Integer Overflow or Wraparound vulnerability in Rockwellautomation Rslinx Enterprise	High
2019-01-24	CVE-2018-18981	Resource Management Errors vulnerability in Rockwellautomation Factorytalk Services Platform 2.90	High
2018-12-26	CVE-2018-19615	Cross-Site Scripting (XSS) vulnerability in Rockwellautomation Powermonitor 1000 Firmware 1408em3aentb	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.