Vulnerabilities > Rockwellautomation > Armor Compact Guardlogix 5370 Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-05-01 | CVE-2019-10952 | Resource Exhaustion vulnerability in Rockwellautomation products An attacker could send a crafted HTTP/HTTPS request to render the web server unavailable and/or lead to remote code execution caused by a stack-based buffer overflow vulnerability. | 9.8 |
2019-05-01 | CVE-2019-10954 | Stack-based Buffer Overflow vulnerability in Rockwellautomation products An attacker could send crafted SMTP packets to cause a denial-of-service condition where the controller enters a major non-recoverable faulted state (MNRF) in CompactLogix 5370 L1, L2, and L3 Controllers, Compact GuardLogix 5370 controllers, and Armor Compact GuardLogix 5370 Controllers Versions 20 - 30 and earlier. | 7.5 |