CRITICAL🇵🇱 Wersja polska

CVE-2017-16740

CVSS 10.0v3.0pub. 2018-01-09upd. 2024-11-21

A Buffer Overflow issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1400 Controllers, Series B and C Versions 21.002 and earlier. The stack-based buffer overflow vulnerability has been identified, which may allow remote code execution.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Rockwellautomation 1766 L32awa

    HW
    Rockwellautomation
    wszystkie wersje
  • Rockwellautomation 1766 L32awaa

    HW
    Rockwellautomation
    wszystkie wersje
  • Rockwellautomation 1766 L32awaa Firmware

    OS
    Rockwellautomation
    ≤ 21.002
  • Rockwellautomation 1766 L32awa Firmware

    OS
    Rockwellautomation
    ≤ 21.002
  • Rockwellautomation 1766 L32bwa

    HW
    Rockwellautomation
    wszystkie wersje
  • Rockwellautomation 1766 L32bwaa

    HW
    Rockwellautomation
    wszystkie wersje
  • Rockwellautomation 1766 L32bwaa Firmware

    OS
    Rockwellautomation
    ≤ 21.002
  • Rockwellautomation 1766 L32bwa Firmware

    OS
    Rockwellautomation
    ≤ 21.002
  • Rockwellautomation 1766 L32bxb

    HW
    Rockwellautomation
    wszystkie wersje
  • Rockwellautomation 1766 L32bxba

    HW
    Rockwellautomation
    wszystkie wersje
  • Rockwellautomation 1766 L32bxba Firmware

    OS
    Rockwellautomation
    ≤ 21.002
  • Rockwellautomation 1766 L32bxb Firmware

    OS
    Rockwellautomation
    ≤ 21.002
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2016-5645HIGH7.3ten sam produkt

Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and...

CVE-2023-20198CRITICAL10.0⚠ KEVten sam vendor

Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in...

CVE-2021-22681CRITICAL9.8⚠ KEVten sam vendor

Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 ...

CVE-2025-7328CRITICAL9.9PL ✓ten sam vendor

Brak uwierzytelnienia w krytycznych funkcjach Rockwell Automation 1783-NATR

CVE-2025-0477CRITICAL9.3PL ✓ten sam vendor

Słabe szyfrowanie haseł w Rockwell Automation FactoryTalk AssetCentre