CVE-2025-14027

Published: Jan 20, 2026

Modified: Jan 20, 2026

PUBLISHED

Description

Multiple denial-of-service vulnerabilities exist in the affected product. These issues can be triggered through various crafted inputs, including malformed Class 3 messages, memory leak conditions, and other resource exhaustion scenarios. Exploitation may cause the device to become unresponsive and, in some cases, result in a major nonrecoverable fault. Recovery may require a restart.

Vendor	Product	Versions
Rockwell Automation	ControlLogix® Redundancy Enhanced Module	affected `All Versions`

Weaknesses (CWE)

CWE-401

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1769.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-14027

Description

Affected Products

Weaknesses (CWE)

References