Learn about CVE-2017-6024 affecting Rockwell Automation ControlLogix 5580 and CompactLogix 5380 controllers. Discover the impact, affected versions, exploitation, and mitigation steps.
A security flaw affecting Rockwell Automation ControlLogix 5580 and CompactLogix 5380 controllers has been identified, potentially enabling unauthorized disruption of normal functionality.
Understanding CVE-2017-6024
What is CVE-2017-6024?
A Resource Exhaustion vulnerability in Rockwell Automation ControlLogix 5580 and CompactLogix 5380 controllers could allow an attacker to disrupt the controller's normal functionality by sending specific CIP-based instructions.
The Impact of CVE-2017-6024
This vulnerability could lead to a denial of service condition on affected controllers, impacting their availability and performance.
Technical Details of CVE-2017-6024
Vulnerability Description
The flaw affects Rockwell Automation ControlLogix 5580 controllers versions V28.011, V28.012, and V28.013; ControlLogix 5580 controllers version V29.011; CompactLogix 5380 controllers version V28.011; and CompactLogix 5380 controllers version V29.011.
Affected Systems and Versions
Exploitation Mechanism
The vulnerability can be exploited by sending a sequence of targeted CIP-based instructions to the affected controllers.
Mitigation and Prevention
Immediate Steps to Take
Long-Term Security Practices
Patching and Updates
Ensure that all affected Rockwell Automation ControlLogix 5580 and CompactLogix 5380 controllers are updated with the latest patches to mitigate the Resource Exhaustion vulnerability.