When an authenticated password change request takes place, this vulnerability could allow the attacker to intercept the message that includes the legitimate, new password hash and replace it with an illegitimate hash. The user would no longer be able to authenticate to the controller (Micro800: All versions, MicroLogix 1400: Version 21 and later) causing a denial-of-service condition
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HRockwellautomation Micro800
HWRockwellautomationwszystkie wersjeRockwellautomation Micro800 Firmware
OSRockwellautomationwszystkie wersjeRockwellautomation Micrologix 1400
HWRockwellautomationwszystkie wersjeRockwellautomation Micrologix 1400 Firmware
OSRockwellautomation≥ 21.0
Powiązane podatności
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...