Vulnerabilities > Rockwellautomation > Micrologix 1400 Firmware > 21.6

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-20	CVE-2022-2179	Improper Restriction of Rendered UI Layers or Frames vulnerability in Rockwellautomation Micrologix 1100 Firmware and Micrologix 1400 Firmware The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks. network low complexity rockwellautomation CWE-1021	6.5
2021-06-03	CVE-2021-32926	Unspecified vulnerability in Rockwellautomation Micro800 Firmware and Micrologix 1400 Firmware When an authenticated password change request takes place, this vulnerability could allow the attacker to intercept the message that includes the legitimate, new password hash and replace it with an illegitimate hash. network low complexity rockwellautomation	7.5
2021-03-25	CVE-2021-22659	Unspecified vulnerability in Rockwellautomation Micrologix 1400 Firmware 21.0/21.6 Rockwell Automation MicroLogix 1400 Version 21.6 and below may allow a remote unauthenticated attacker to send a specially crafted Modbus packet allowing the attacker to retrieve or modify random values in the register. network low complexity rockwellautomation	8.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.