CVE-2025-9368
BaseFortify
Publication date: 2025-12-09
Last updated on: 2025-12-09
Assigner: Rockwell Automation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| rockwell_automation | 432es-ig3_series_a | 2.001.9 |
| rockwell_automation | 432es-ig3_series_a | 1.001 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-770 | The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability be detected on my network or system? Can you suggest some commands?
The vulnerability results in a denial-of-service condition requiring a manual power cycle to recover the device. Detection would involve monitoring for device unresponsiveness or DoS symptoms on the GuardLink EtherNet/IP Interface. No specific detection commands or tools are provided in the available resources. [1]
Can you explain this vulnerability to me?
This vulnerability exists in the 432ES-IG3 Series A GuardLink® EtherNet/IP Interface and causes a denial-of-service condition. When exploited, the device stops functioning properly and requires a manual power cycle to recover.
How can this vulnerability impact me? :
The impact of this vulnerability is a denial-of-service, meaning the affected device will become unresponsive and stop working until it is manually power cycled. This can cause operational disruptions and downtime.
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include upgrading the affected device software from version 1.001 to the corrected version 2.001.9. No workaround is available. Users should also follow Rockwell Automation's security best practices. If the device becomes unresponsive due to the vulnerability, a manual power cycle is required to recover it. [1]