Executive Summary

This vulnerability is a denial-of-service (DoS) issue in Rockwell Automation's ControlLogix 5580 controller software version 35.013. It occurs because the controller repeatedly attempts to forward messages, which can cause a major nonrecoverable fault (MNRF) that stops the controller from functioning properly. The issue is classified as a NULL Pointer Dereference (CWE-476). [1]

Useful 0 Not Useful 0

Impact Analysis

The vulnerability can cause the affected controller to experience a major nonrecoverable fault, leading to a denial of service where the controller cannot recover or operate correctly. This can disrupt operations that depend on the controller, potentially causing downtime or loss of control in automated systems. [1]

Useful 0 Not Useful 0

Mitigation Strategies

The vulnerability has been corrected in Rockwell Automation ControlLogix 5580 controller software version 35.014 and later. Immediate mitigation is to upgrade the controller software to version 35.014 or newer. There is no workaround available. For customers unable to upgrade immediately, it is advised to follow Rockwell Automation’s security best practices. [1]

Useful 0 Not Useful 0