CVE-2024-12372
Rockwell Automation PowerMonitorâ„¢ 1000 Denial of Service
Severity Score
9.3
*CVSS v4
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
A denial-of-service and possible remote code execution vulnerability exists in the Rockwell Automation Power Monitor 1000. The vulnerability results in corruption of the heap memory which may compromise the integrity of the system, potentially allowing for remote code execution or a denial-of-service attack.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
System
Vulnerable | Subsequent
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-12-09 CVE Reserved
- 2024-12-18 CVE Published
- 2024-12-18 CVE Updated
- 2024-12-19 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-BC3A-485 Search vendor "Rockwell Automation" for product "PM1k 1408-BC3A-485" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-BC3A-485" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-BC3A-ENT Search vendor "Rockwell Automation" for product "PM1k 1408-BC3A-ENT" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-BC3A-ENT" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-TS3A-485 Search vendor "Rockwell Automation" for product "PM1k 1408-TS3A-485" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-TS3A-485" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-TS3A-ENT Search vendor "Rockwell Automation" for product "PM1k 1408-TS3A-ENT" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-TS3A-ENT" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-EM3A-485 Search vendor "Rockwell Automation" for product "PM1k 1408-EM3A-485" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-EM3A-485" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-EM3A-ENT Search vendor "Rockwell Automation" for product "PM1k 1408-EM3A-ENT" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-EM3A-ENT" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-TR1A-485 Search vendor "Rockwell Automation" for product "PM1k 1408-TR1A-485" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-TR1A-485" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-TR2A-485 Search vendor "Rockwell Automation" for product "PM1k 1408-TR2A-485" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-TR2A-485" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-EM1A-485 Search vendor "Rockwell Automation" for product "PM1k 1408-EM1A-485" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-EM1A-485" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-EM2A-485 Search vendor "Rockwell Automation" for product "PM1k 1408-EM2A-485" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-EM2A-485" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-TR1A-ENT Search vendor "Rockwell Automation" for product "PM1k 1408-TR1A-ENT" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-TR1A-ENT" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-TR2A-ENT Search vendor "Rockwell Automation" for product "PM1k 1408-TR2A-ENT" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-TR2A-ENT" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-EM1A-ENT Search vendor "Rockwell Automation" for product "PM1k 1408-EM1A-ENT" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-EM1A-ENT" and version " < 4.020" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | PM1k 1408-EM2A-ENT Search vendor "Rockwell Automation" for product "PM1k 1408-EM2A-ENT" | < 4.020 Search vendor "Rockwell Automation" for product "PM1k 1408-EM2A-ENT" and version " < 4.020" | en |
Affected
| ||||||