Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers Improper Input Validation
CVE-2020-6998

8.6HIGH

Key Information:

Vendor: Rockwell Automation
Status: Armor Compact Guardlogix 5370 Controllers; Armor Guardlogix Safety Controllers; Compactlogix 5370 L1 Controllers; Compactlogix 5370 L2 Controllers
Vendor: CVE Published:; 27 July 2022

🔔 Create Rockwell Automation Vulnerability Alert

What is CVE-2020-6998?

The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to a controller, which may cause denial-of-service conditions in communications with other products.

Affected Version(s)

Armor Compact GuardLogix 5370 controllers <= unspecified

Armor GuardLogix Safety Controllers <= unspecified

Compact GuardLogix 5370 controllers <= unspecified

References

https://www.cisa.gov/uscert/ics/advisories/icsa-21-061-02

x_refsource_CONFIRM

https://rockwellautomation.custhelp.com/app/answers/answe...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 27, 2022
Vulnerability Reserved
Jan 14, 2020

Credit

Yeop Chang reported this vulnerability to CISA.