Vulnerabilities > Rockwellautomation > Micrologix 1400 Firmware > 21.007

DATE CVE VULNERABILITY TITLE RISK
2022-07-20 CVE-2022-2179 Improper Restriction of Rendered UI Layers or Frames vulnerability in Rockwellautomation Micrologix 1100 Firmware and Micrologix 1400 Firmware
The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks.
network
low complexity
rockwellautomation CWE-1021
6.5
2021-06-03 CVE-2021-32926 Unspecified vulnerability in Rockwellautomation Micro800 Firmware and Micrologix 1400 Firmware
When an authenticated password change request takes place, this vulnerability could allow the attacker to intercept the message that includes the legitimate, new password hash and replace it with an illegitimate hash.
network
low complexity
rockwellautomation
7.5