CVE-2024-21916 - OpenCVE

A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rockwellautomation	Controllogix 5570 Controller Controllogix 5570 Controller Firmware Controllogix 5570 Redundant Controller Controllogix 5570 Redundant Controller Firmware Guardlogix 5570 Controller Guardlogix 5570 Controller Firmware

Configuration 1 [-]

AND

cpe:2.3:h:rockwellautomation:controllogix_5570_controller:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:h:rockwellautomation:guardlogix_5570_controller:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:h:rockwellautomation:controllogix_5570_redundant_controller:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html

History

No history.

MITRE

Status: PUBLISHED

Assigner: Rockwell

Published: 2024-01-31T18:28:59.715Z

Updated: 2024-08-01T22:35:34.618Z

Reserved: 2024-01-03T16:40:50.367Z

Link: CVE-2024-21916

Vulnrichment

Updated: 2024-08-01T22:35:34.618Z

NVD

Status : Analyzed

Published: 2024-01-31T19:15:08.427

Modified: 2024-02-08T01:34:49.067

Link: CVE-2024-21916

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-21916", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "state": "PUBLISHED", "assignerShortName": "Rockwell", "dateReserved": "2024-01-03T16:40:50.367Z", "datePublished": "2024-01-31T18:28:59.715Z", "dateUpdated": "2024-08-01T22:35:34.618Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "ControlLogix\u00ae 5570", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "20.011"}]}, {"defaultStatus": "unaffected", "product": "GuardLogix\u00ae 5570", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "20.011"}]}, {"defaultStatus": "unaffected", "product": "ControlLogix\u00ae 5570 redundant", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "20.054_kit1"}]}], "datePublic": "2024-01-30T14:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the </span><a target=\"_blank\" rel=\"nofollow\">MNRF.</a>"}], "value": "\nA denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF."}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-119", "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-01-31T18:28:59.715Z"}, "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<ul><li>Update to corrected Firmware. </li></ul>\n\n<table><tbody><tr><td><p><a target=\"_blank\" rel=\"nofollow\">Affected Product</a></p></td><td><p><a target=\"_blank\" rel=\"nofollow\">First Known in Firmware</a></p></td><td><p>Corrected in Firmware</p></td></tr><tr><td><p>ControlLogix\u00ae 5570</p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>GuardLogix\u00ae 5570<b></b></p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>ControlLogix\u00ae 5570 redundant<b></b></p></td><td><p>20.054_kit1</p></td><td><p>v33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late</p></td></tr></tbody></table>\n\n<br>\n\n"}], "value": "\n * Update to corrected Firmware.\u00a0\n\n\n\n\nAffected Product\n\nFirst Known in Firmware\n\nCorrected in Firmware\n\nControlLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nGuardLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nControlLogix\u00ae 5570 redundant\n\n20.054_kit1\n\nv33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late\n\n\n\n\n\n\n"}], "source": {"discovery": "UNKNOWN"}, "title": "Rockwell Automation Denial-of-service Vulnerability in ICE1 Controller", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"affected": [{"vendor": "rockwellautomation", "product": "controllogix_5570_controller_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "20.011", "status": "affected"}]}, {"vendor": "rockwellautomation", "product": "guardlogix_5570_controller_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "20.011", "status": "affected"}]}, {"vendor": "rockwellautomation", "product": "controllogix_5570_redundant_controller_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "20.054_kit1", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-02-06T05:00:32.025684Z", "id": "CVE-2024-21916", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-01T19:54:41.466Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T22:35:34.618Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T22:35:34.618Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-21916", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-02-06T05:00:32.025684Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "controllogix_5570_controller_firmware", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "guardlogix_5570_controller_firmware", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "controllogix_5570_redundant_controller_firmware", "versions": [{"status": "affected", "version": "20.054_kit1"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-01T19:53:42.020Z"}}], "cna": {"title": "Rockwell Automation Denial-of-service Vulnerability in ICE1 Controller", "source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Rockwell Automation", "product": "ControlLogix\u00ae 5570", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "GuardLogix\u00ae 5570", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "ControlLogix\u00ae 5570 redundant", "versions": [{"status": "affected", "version": "20.054_kit1"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "\n * Update to corrected Firmware.\u00a0\n\n\n\n\nAffected Product\n\nFirst Known in Firmware\n\nCorrected in Firmware\n\nControlLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nGuardLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nControlLogix\u00ae 5570 redundant\n\n20.054_kit1\n\nv33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late\n\n\n\n\n\n\n", "supportingMedia": [{"type": "text/html", "value": "\n\n<ul><li>Update to corrected Firmware. </li></ul>\n\n<table><tbody><tr><td><p><a target=\"_blank\" rel=\"nofollow\">Affected Product</a></p></td><td><p><a target=\"_blank\" rel=\"nofollow\">First Known in Firmware</a></p></td><td><p>Corrected in Firmware</p></td></tr><tr><td><p>ControlLogix\u00ae 5570</p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>GuardLogix\u00ae 5570<b></b></p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>ControlLogix\u00ae 5570 redundant<b></b></p></td><td><p>20.054_kit1</p></td><td><p>v33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late</p></td></tr></tbody></table>\n\n<br>\n\n", "base64": false}]}], "datePublic": "2024-01-30T14:00:00.000Z", "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "\nA denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.", "supportingMedia": [{"type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the </span><a target=\"_blank\" rel=\"nofollow\">MNRF.</a>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-119", "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-01-31T18:28:59.715Z"}}}, "cveMetadata": {"cveId": "CVE-2024-21916", "state": "PUBLISHED", "dateUpdated": "2024-08-01T22:35:34.618Z", "dateReserved": "2024-01-03T16:40:50.367Z", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "datePublished": "2024-01-31T18:28:59.715Z", "assignerShortName": "Rockwell"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:controllogix_5570_controller:-:*:*:*:*:*:*:*", "matchCriteriaId": "C16C24E2-4CB6-4413-8D48-588E0246617E", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*", "matchCriteriaId": "06E12A7B-E32C-46DE-891B-B42586053A33", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:guardlogix_5570_controller:-:*:*:*:*:*:*:*", "matchCriteriaId": "B4B273FA-0865-4505-AAF8-1676940A3EA9", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*", "matchCriteriaId": "6D5A9D00-9B54-4A85-9E9D-652FA0BC911F", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:controllogix_5570_redundant_controller:-:*:*:*:*:*:*:*", "matchCriteriaId": "898183DD-C3AE-42EE-9891-81BFA774476A", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*", "matchCriteriaId": "9CA7904D-3C8B-4CED-B2AB-0CCD266B148F", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "\nA denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF."}, {"lang": "es", "value": "Existe una vulnerabilidad de denegaci\u00f3n de servicio en controladores Rockwell Automation ControlLogix ang GuardLogix. Si se explota, el producto podr\u00eda experimentar un fallo importante no recuperable (MNRF). El dispositivo se reiniciar\u00e1 solo para recuperarse del MNRF."}], "id": "CVE-2024-21916", "lastModified": "2024-02-08T01:34:49.067", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.0, "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}]}, "published": "2024-01-31T19:15:08.427", "references": [{"source": "PSIRT@rockwellautomation.com", "tags": ["Vendor Advisory"], "url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html"}], "sourceIdentifier": "PSIRT@rockwellautomation.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-119"}], "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}]}