Latest Vulnerabilities Affecting Rockwellautomation products

Date	CVE	Title	CVSS
2019-05-01	CVE-2019-10952	Buffer Errors vulnerability in Rockwellautomation and products	High
2019-05-01	CVE-2019-10954	Buffer Errors vulnerability in Rockwellautomation and products	High
2019-04-25	CVE-2019-10955	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Rockwellautomation and products	Medium
2019-04-04	CVE-2018-19282	Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability in Rockwellautomation Powerflex 525 AC Drives Firmware 5.001	High
2019-04-04	CVE-2019-6553	Buffer Errors vulnerability in Rockwellautomation Rslinx 4.10.00	High
2019-03-27	CVE-2018-19016	Input Validation vulnerability in Rockwellautomation Ethernet/Ip WEB Server Module 1756 Eweb and Ethernet/Ip WEB Server Module 1768 Eweb	High
2019-03-26	CVE-2010-5305	Improper Access Control vulnerability in Rockwellautomation products	High
2019-03-26	CVE-2013-2805	Out-of-bounds Read vulnerability in Rockwellautomation Rslinx Enterprise	High
2019-03-26	CVE-2013-2807	Out-of-bounds Read vulnerability in Rockwellautomation Rslinx Enterprise	High
2019-03-26	CVE-2013-2806	Integer Overflow or Wraparound vulnerability in Rockwellautomation Rslinx Enterprise	High
2019-01-24	CVE-2018-18981	Resource Management Errors vulnerability in Rockwellautomation Factorytalk Services Platform 2.90	High
2018-12-26	CVE-2018-19615	Cross-Site Scripting (XSS) vulnerability in Rockwellautomation Powermonitor 1000 Firmware 1408em3aentb	Medium
2018-12-26	CVE-2018-19616	Improper Access Control vulnerability in Rockwellautomation Powermonitor 1000 Firmware 1408em3aentb	Medium
2018-12-07	CVE-2018-17924	Missing Authentication for Critical Function vulnerability in Rockwellautomation and products	High
2018-09-20	CVE-2018-14821	Buffer Errors vulnerability in Rockwellautomation Rslinx 4.00.01	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.