CVE-2022-1797
Rockwell Automation Logix Controllers Uncontrolled Resource Consumption
Severity Score
8.6
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownload the user project file to bring the device back online.
Un mensaje de protocolo industrial común de clase 3 malformado con una conexión en caché puede causar una condición de denegación de servicio en los controladores Logix de Rockwell Automation, lo que resulta en una falla importante no recuperable. Si el dispositivo de destino deja de estar disponible, un usuario tendría que borrar el fallo y volver a descargar el archivo de proyecto del usuario para que el dispositivo vuelva a estar en línea
*Credits:
Rockwell Automation discovered this vulnerability during routine security testing and reported it to CISA.
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-05-18 CVE Reserved
- 2022-05-31 CVE Published
- 2023-12-22 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-400: Uncontrolled Resource Consumption
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://www.cisa.gov/uscert/ics/advisories/icsa-22-144-01 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Rockwellautomation Search vendor "Rockwellautomation" | Compactlogix 5380 Firmware Search vendor "Rockwellautomation" for product "Compactlogix 5380 Firmware" | < 33.011 Search vendor "Rockwellautomation" for product "Compactlogix 5380 Firmware" and version " < 33.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Compactlogix 5380 Search vendor "Rockwellautomation" for product "Compactlogix 5380" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Compact Guardlogix 5380 Firmware Search vendor "Rockwellautomation" for product "Compact Guardlogix 5380 Firmware" | < 33.011 Search vendor "Rockwellautomation" for product "Compact Guardlogix 5380 Firmware" and version " < 33.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Compact Guardlogix 5380 Search vendor "Rockwellautomation" for product "Compact Guardlogix 5380" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Compactlogix 5480 Firmware Search vendor "Rockwellautomation" for product "Compactlogix 5480 Firmware" | < 33.011 Search vendor "Rockwellautomation" for product "Compactlogix 5480 Firmware" and version " < 33.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Compactlogix 5480 Search vendor "Rockwellautomation" for product "Compactlogix 5480" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Controllogix 5580 Firmware Search vendor "Rockwellautomation" for product "Controllogix 5580 Firmware" | < 33.011 Search vendor "Rockwellautomation" for product "Controllogix 5580 Firmware" and version " < 33.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Controllogix 5580 Search vendor "Rockwellautomation" for product "Controllogix 5580" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Guardlogix 5580 Firmware Search vendor "Rockwellautomation" for product "Guardlogix 5580 Firmware" | < 33.011 Search vendor "Rockwellautomation" for product "Guardlogix 5580 Firmware" and version " < 33.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Guardlogix 5580 Search vendor "Rockwellautomation" for product "Guardlogix 5580" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Compactlogix 5370 Firmware Search vendor "Rockwellautomation" for product "Compactlogix 5370 Firmware" | < 34.011 Search vendor "Rockwellautomation" for product "Compactlogix 5370 Firmware" and version " < 34.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Compactlogix 5370 Search vendor "Rockwellautomation" for product "Compactlogix 5370" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Compact Guardlogix 5370 Firmware Search vendor "Rockwellautomation" for product "Compact Guardlogix 5370 Firmware" | < 34.011 Search vendor "Rockwellautomation" for product "Compact Guardlogix 5370 Firmware" and version " < 34.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Compact Guardlogix 5370 Search vendor "Rockwellautomation" for product "Compact Guardlogix 5370" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Controllogix 5570 Firmware Search vendor "Rockwellautomation" for product "Controllogix 5570 Firmware" | < 34.011 Search vendor "Rockwellautomation" for product "Controllogix 5570 Firmware" and version " < 34.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Controllogix 5570 Search vendor "Rockwellautomation" for product "Controllogix 5570" | - | - |
Safe
|
| Rockwellautomation Search vendor "Rockwellautomation" | Guardlogix 5570 Firmware Search vendor "Rockwellautomation" for product "Guardlogix 5570 Firmware" | < 34.011 Search vendor "Rockwellautomation" for product "Guardlogix 5570 Firmware" and version " < 34.011" | - |
Affected
| in | Rockwellautomation Search vendor "Rockwellautomation" | Guardlogix 5570 Search vendor "Rockwellautomation" for product "Guardlogix 5570" | - | - |
Safe
|