Security Flaw in Rockwell Automation EtherNet/IP Products and Controllers
CVE-2012-6440

Currently unrated

Key Information:

Vendor: Rockwell Automation
Status: 1756-enbt, 1756-eweb, 1768-enbt, 1768-eweb Communication Modules; Compactlogix L32e And L35e Controllers; 1788-enbt Flexlogix Adapter; 1794-aentr Flex I/o Ethernet/ip Adapter
Vendor: CVE Published:; 24 January 2013

🔔 Create Rockwell Automation Vulnerability Alert

What is CVE-2012-6440?

The web-server password authentication feature in various Rockwell Automation EtherNet/IP products and controllers is susceptible to man-in-the-middle attacks. Malicious actors can exploit this vulnerability to intercept and replay HTTP traffic, potentially compromising system integrity and exposing sensitive information. This issue affects multiple communication modules and controllers, emphasizing the need for users to implement security measures to safeguard against unauthorized access.

Affected Version(s)

1756-ENBT, 1756-EWEB, 1768-ENBT, 1768-EWEB communication modules All

1788-ENBT FLEXLogix adapter All

1794-AENTR FLEX I/O EtherNet/IP adapter All

References

https://www.cisa.gov/news-events/ics-advisories/icsa-13-0...

https://rockwellautomation.custhelp.com/app/answers/detai...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 24, 2013