CVE-2026-0646
Awaiting Analysis Awaiting Analysis - Queue
Denial-of-Service in Rockwell Automation 1794-AENTR Adapter

Publication date: 2026-06-16

Last updated on: 2026-06-16

Assigner: Rockwell Automation

Description
A denial-of-service security issue exists within the 1794-AENTR adapter due to improper memory handling of CIP protocol requests. This vulnerability can result in the adapter faulting and losing connection to its associated I/O modules, requiring a manual reset to recover.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-16
Last Modified
2026-06-16
Generated
2026-06-16
AI Q&A
2026-06-16
EPSS Evaluated
N/A
NVD
CVE-2026-0646
EUVD
EUVD-2026-37121
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
rockwell_automation 1794-aentr_adapter *
rockwell_automation flex_i/o_dual-port_ethernet/ip_adapters 2.012
rockwell_automation flex_i/o_dual-port_ethernet/ip_adapters 2.013
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-401 The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-0646 is a high-severity denial-of-service vulnerability affecting Rockwell Automation's FLEX I/O Dual-port EtherNet/IP Adapters, specifically the 1794-AENTR and 1794-AENTRXT models running firmware version 2.012.

The issue arises from improper memory handling of CIP (Common Industrial Protocol) requests, which causes the adapter to fault and disconnect from its associated I/O modules.

When this happens, the adapter requires a manual reset to restore its functionality.

Impact Analysis

This vulnerability can cause the affected adapter to fault and lose connection to its associated I/O modules, resulting in a denial-of-service condition.

Such a fault disrupts normal operations and requires manual intervention to reset the adapter and restore connectivity.

This disruption can lead to downtime and potential operational delays in environments relying on these adapters.

Detection Guidance

This vulnerability causes the 1794-AENTR adapter to fault and lose connection to its associated I/O modules, requiring a manual reset to recover.

Detection can involve monitoring the adapter for unexpected disconnections or faults in communication with I/O modules.

No specific commands or detection tools are provided in the available information.

Mitigation Strategies

The immediate mitigation step is to upgrade the firmware of the affected 1794-AENTR and 1794-AENTRXT adapters to version 2.013, which contains the fix for this vulnerability.

Until the upgrade is applied, be aware that the adapter may fault and require manual reset if the vulnerability is triggered.

Compliance Impact

The provided information does not specify any direct impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-0646. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart