Vulnerability in IPv6 Stack of Micro850 and Micro870 Controllers by Rockwell Automation
CVE-2025-13823

7.1HIGH

Key Information:

Vendor: Rockwell Automation
Status: Micro820®, Micro850®, Micro870®
Vendor: CVE Published:; 15 December 2025

🔔 Create Rockwell Automation Vulnerability Alert

What is CVE-2025-13823?

A security issue has been identified in the IPv6 stack of Micro850 and Micro870 controllers. This vulnerability is triggered when the controllers process multiple malformed packets, resulting in a recoverable fault identified by fault code 0xFE60. To restore functionality, users must clear the fault condition. It is essential for users to be aware of this potential security risk and take appropriate measures to monitor and safeguard their systems.

Affected Version(s)

Micro820®, Micro850®, Micro870® V23.011

References

https://www.rockwellautomation.com/en-us/trust-center/sec...

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 15, 2025
Vulnerability Reserved
Dec 1, 2025

JSON