CVE-2022-1161

CRITICAL

ControlLogix, CompactLogix, GuardLogix - Code Injection

Title source: llm

Description

An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Control systems. Studio 5000 Logix Designer writes user-readable program code to a separate location than the executed compiled code, allowing an attacker to change one and not the other.

References (1)

[Third Party Advisory, US Government Resource] https://www.cisa.gov/uscert/ics/advisories/icsa-22-090-05

Scores

CVSS v3 10.0

EPSS 0.0012

EPSS Percentile 30.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-829

Status published

Products (24)

rockwellautomation/compact_guardlogix_5370_firmware

rockwellautomation/compact_guardlogix_5380_firmware

rockwellautomation/compactlogix_1768-l43_firmware

rockwellautomation/compactlogix_1768-l45_firmware

rockwellautomation/compactlogix_1769-l31_firmware

rockwellautomation/compactlogix_1769-l32c_firmware

rockwellautomation/compactlogix_1769-l32e_firmware

rockwellautomation/compactlogix_1769-l35cr_firmware

rockwellautomation/compactlogix_1769-l35e_firmware

rockwellautomation/compactlogix_5370_l1_firmware

... and 14 more

Published Apr 11, 2022

Tracked Since Feb 18, 2026