CVE-2024-9124
Rockwell Automation PowerFlex 6000T CIP Security denial-of-service Vulnerability
Severity Score
8.2
*CVSS v4
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 600T. If the device is overloaded with requests, it will become unavailable. The device may require a power cycle to recover it if it does not re-establish a connection after it stops receiving requests.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
System
Vulnerable | Subsequent
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-09-23 CVE Reserved
- 2024-10-08 CVE Published
- 2024-10-09 EPSS Updated
- 2024-11-21 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-754: Improper Check for Unusual or Exceptional Conditions
CAPEC
- CAPEC-26: Leveraging Race Conditions
References (1)
| URL | Tag | Source |
|---|---|---|
| https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1705.html |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Rockwell Automation Search vendor "Rockwell Automation" | Drives - PowerFlex 6000T Search vendor "Rockwell Automation" for product "Drives - PowerFlex 6000T" | 8.001 Search vendor "Rockwell Automation" for product "Drives - PowerFlex 6000T" and version "8.001" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | Drives - PowerFlex 6000T Search vendor "Rockwell Automation" for product "Drives - PowerFlex 6000T" | 8.002 Search vendor "Rockwell Automation" for product "Drives - PowerFlex 6000T" and version "8.002" | en |
Affected
| ||||||
| Rockwell Automation Search vendor "Rockwell Automation" | Drives - PowerFlex 6000T Search vendor "Rockwell Automation" for product "Drives - PowerFlex 6000T" | 9.001 Search vendor "Rockwell Automation" for product "Drives - PowerFlex 6000T" and version "9.001" | en |
Affected
| ||||||