rockwellautomation

338 tracked vulnerabilities.

CVE-2023-0755 CRITICAL
GE Digital Industrial Gateway Server < 7.612 - Remote Code Execution via Array Index Validation
Feb 23, 2023
CVSS 9.8
EPSS 0.08
CVE-2023-0754 CRITICAL
GE Digital Industrial Gateway Server < 7.612 - Integer Overflow or Wraparound
Feb 23, 2023
CVSS 9.8
EPSS 0.01
CVE-2022-2848 CRITICAL
Kepware KEPServerEX - Heap Buffer Overflow Remote Code Execution
Mar 29, 2023
CVSS 9.1
EPSS 0.01
CVE-2022-2825 CRITICAL
Kepware KEPServerEX - Stack Buffer Overflow Remote Code Execution
Mar 29, 2023
CVSS 9.8
EPSS 0.01
CVE-2022-3156 HIGH
Rockwell Automation Studio 5000 Logix Emulate 20.011-33.x - Remote Code Execution via Service Misconfiguration
Dec 27, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-3752 HIGH
Rockwellautomation Compactlogix 5480 ... - Improper Input Validation
Dec 19, 2022
CVSS 8.6
EPSS 0.02
CVE-2022-46670 HIGH
Rockwell Automation - Unauthenticated XSS
Dec 16, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-3157 HIGH
Rockwell Automation CompactLogix 5370 Firmware 20-32 - Denial of Service via Malformed CIP Request
Dec 16, 2022
CVSS 8.6
EPSS 0.02
CVE-2022-3166 HIGH
Rockwell Automation Micrologix 1100-1400 - DoS
Dec 16, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-38744 HIGH
Rockwell Automation FactoryTalk Alarm and Events - DoS
Oct 27, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-3158 HIGH
Rockwell Automation FactoryTalk VantagePoint 8.0-8.31 - Authenticated SQL Injection
Oct 17, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-38743 HIGH
Rockwell Automation FactoryTalk VantagePoint <8.31 - Privilege Esca...
Oct 17, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-38742 HIGH
Rockwell Automation ThinManager ThinServer <13.0.0 - Buffer Overflow
Sep 23, 2022
CVSS 8.1
EPSS 0.06
CVE-2022-2465 HIGH
Rockwell Automation ISaGRAF Workbench 6.0-6.6.9 - Remote Code Execution via Untrusted Data Deserialization
Aug 25, 2022
CVSS 8.6
EPSS 0.00
CVE-2022-2464 HIGH
Rockwell Automation ISaGRAF Workbench 6.0-6.6.9 - Path Traversal via Crafted Malicious Files
Aug 25, 2022
CVSS 7.7
EPSS 0.00
CVE-2022-2463 MEDIUM
Rockwell Automation ISaGRAF Workbench 6.0-6.6.9 - Path Traversal via Malicious .7z Exchange File
Aug 25, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-2179 MEDIUM
Rockwell Automation MicroLogix <21.007 - CSRF
Jul 20, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-1797 MEDIUM
Rockwellautomation Compactlogix 5380 Firmware - Denial of Service
Jun 02, 2022
CVSS 6.8
EPSS 0.00
CVE-2022-1118 HIGH
Connected Components Workbench < 13.00.00 - Deserialization of Untrusted Data
May 17, 2022
CVSS 8.6
EPSS 0.22
CVE-2022-1161 CRITICAL
ControlLogix, CompactLogix, GuardLogix - Code Injection
Apr 11, 2022
CVSS 10.0
EPSS 0.00
CVE-2022-1159 HIGH
Rockwellautomation Controllogix 5580 Firmware - Code Injection
Apr 01, 2022
CVSS 7.7
EPSS 0.00
CVE-2022-1018 MEDIUM
Rockwell Automation Connected Components Workbench < 12.0 - XML External Entity Injection via Malicious Solution File
Apr 01, 2022
CVSS 5.5
EPSS 0.09
CVE-2021-32960 HIGH
Rockwellautomation Factorytalk Services Platform < 6.11.00 - Incorrect Authorization
Apr 01, 2022
CVSS 8.5
EPSS 0.00
CVE-2021-27476 CRITICAL
Rockwell Automation FactoryTalk AssetCentre <10.00 - Command Injection
Mar 23, 2022
CVSS 10.0
EPSS 0.00
CVE-2021-27475 HIGH
Rockwellautomation Connected Components Workbench < 12.00.00 - Insecure Deserialization
Mar 23, 2022
CVSS 8.6
EPSS 0.00
Products
arena 42 micrologix_1400_b_firmware 22 factorytalk_view 18 thinmanager 16 factorytalk_linx 14 micrologix_1100_firmware 14 controllogix_5580_firmware 13 factorytalk_services_platform 13 guardlogix_5580_firmware 13 compactlogix_5380_firmware 12 factorytalk_assetcentre 12 compactlogix_5480_firmware 11 micrologix_1400_firmware 11 armorstart_st_281e_firmware 10 armorstart_st_284ee_firmware 10 armorstart_lt_firmware 9 kepserver_enterprise 9 rslinx 9 1763-l16awa_series_a 8 1763-l16awa_series_b 8 1763-l16bbb_series_a 8 1763-l16bbb_series_b 8 1763-l16bwa_series_a 8 1763-l16bwa_series_b 8 1763-l16dwd_series_a 8 1763-l16dwd_series_b 8 compact_guardlogix_5380_firmware 8 1756-enbt 7 1756-eweb 7 1766-l32awa_series_a 7
Quick Filters
Critical CVEs With Exploits In CISA KEV