CVE-2019-10952
Published: May 1, 2019
Modified: Aug 4, 2024
Description
An attacker could send a crafted HTTP/HTTPS request to render the web server unavailable and/or lead to remote code execution caused by a stack-based buffer overflow vulnerability. A cold restart is required for recovering CompactLogix 5370 L1, L2, and L3 Controllers, Compact GuardLogix 5370 controllers, and Armor Compact GuardLogix 5370 Controllers Versions 20 - 30 and earlier.
| Vendor | Product | Versions |
|---|---|---|
Rockwell Automation | CompactLogix 5370 L1 controllers | affected 0 - < 20 - 30 |
Rockwell Automation | CompactLogix 5370 L2 controllers | affected 0 - < 20 - 30 |
Rockwell Automation | CompactLogix 5370 L3 controllers | affected 0 - < 20 - 30 |
Rockwell Automation | Compact GuardLogix 5370 controllers | affected 0 - < 20 - 30 |
Rockwell Automation | Armor Compact GuardLogix 5370 controllers | affected 0 - < 20 - 30 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now