Improper Handling of Malformed CIP Forward Close Packets in Rockwell Automation Products
CVE-2025-7693

9.3CRITICAL

Key Information:

Vendor: Rockwell Automation
Status: Plc - Micro850 L50e
Vendor: CVE Published:; 18 August 2025

🔔 Create Rockwell Automation Vulnerability Alert

What is CVE-2025-7693?

A security issue arises from the improper handling of malformed CIP Forward Close packets during fuzzing processes. This flaw can induce the controller to enter a non-responsive state indicated by a solid red Fault LED. After a power cycle, the controller enters a recoverable fault condition, indicated by flashing red MS and Fault LEDs, and reports fault code 0xF015. Recovery from this state requires fault clearance.

Affected Version(s)

PLC - Micro850 L50E V20.011 - V22.011

References

https://www.rockwellautomation.com/en-us/trust-center/sec...

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2025
Vulnerability Reserved
Jul 15, 2025