{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-21916", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "state": "PUBLISHED", "assignerShortName": "Rockwell", "dateReserved": "2024-01-03T16:40:50.367Z", "datePublished": "2024-01-31T18:28:59.715Z", "dateUpdated": "2024-08-01T22:35:34.618Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "ControlLogix\u00ae 5570", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "20.011"}]}, {"defaultStatus": "unaffected", "product": "GuardLogix\u00ae 5570", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "20.011"}]}, {"defaultStatus": "unaffected", "product": "ControlLogix\u00ae 5570 redundant", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "20.054_kit1"}]}], "datePublic": "2024-01-30T14:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the </span><a target=\"_blank\" rel=\"nofollow\">MNRF.</a>"}], "value": "\nA denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF."}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-119", "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-01-31T18:28:59.715Z"}, "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<ul><li>Update to corrected Firmware.&nbsp;</li></ul>\n\n<table><tbody><tr><td><p><a target=\"_blank\" rel=\"nofollow\">Affected Product</a></p></td><td><p><a target=\"_blank\" rel=\"nofollow\">First Known in Firmware</a></p></td><td><p>Corrected in Firmware</p></td></tr><tr><td><p>ControlLogix\u00ae 5570</p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>GuardLogix\u00ae 5570<b></b></p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>ControlLogix\u00ae 5570 redundant<b></b></p></td><td><p>20.054_kit1</p></td><td><p>v33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late</p></td></tr></tbody></table>\n\n<br>\n\n"}], "value": "\n * Update to corrected Firmware.\u00a0\n\n\n\n\nAffected Product\n\nFirst Known in Firmware\n\nCorrected in Firmware\n\nControlLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nGuardLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nControlLogix\u00ae 5570 redundant\n\n20.054_kit1\n\nv33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late\n\n\n\n\n\n\n"}], "source": {"discovery": "UNKNOWN"}, "title": "Rockwell Automation Denial-of-service Vulnerability in ICE1 Controller", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"affected": [{"vendor": "rockwellautomation", "product": "controllogix_5570_controller_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "20.011", "status": "affected"}]}, {"vendor": "rockwellautomation", "product": "guardlogix_5570_controller_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "20.011", "status": "affected"}]}, {"vendor": "rockwellautomation", "product": "controllogix_5570_redundant_controller_firmware", "cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "20.054_kit1", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-02-06T05:00:32.025684Z", "id": "CVE-2024-21916", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-01T19:54:41.466Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T22:35:34.618Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T22:35:34.618Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-21916", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-02-06T05:00:32.025684Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "controllogix_5570_controller_firmware", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "guardlogix_5570_controller_firmware", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "controllogix_5570_redundant_controller_firmware", "versions": [{"status": "affected", "version": "20.054_kit1"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-01T19:53:42.020Z"}}], "cna": {"title": "Rockwell Automation Denial-of-service Vulnerability in ICE1 Controller", "source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Rockwell Automation", "product": "ControlLogix\u00ae 5570", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "GuardLogix\u00ae 5570", "versions": [{"status": "affected", "version": "20.011"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "ControlLogix\u00ae 5570 redundant", "versions": [{"status": "affected", "version": "20.054_kit1"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "\n * Update to corrected Firmware.\u00a0\n\n\n\n\nAffected Product\n\nFirst Known in Firmware\n\nCorrected in Firmware\n\nControlLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nGuardLogix\u00ae 5570\n\n20.011\n\nv33.016, 34.013, 35.012, 36.011 and later\n\nControlLogix\u00ae 5570 redundant\n\n20.054_kit1\n\nv33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late\n\n\n\n\n\n\n", "supportingMedia": [{"type": "text/html", "value": "\n\n<ul><li>Update to corrected Firmware.&nbsp;</li></ul>\n\n<table><tbody><tr><td><p><a target=\"_blank\" rel=\"nofollow\">Affected Product</a></p></td><td><p><a target=\"_blank\" rel=\"nofollow\">First Known in Firmware</a></p></td><td><p>Corrected in Firmware</p></td></tr><tr><td><p>ControlLogix\u00ae 5570</p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>GuardLogix\u00ae 5570<b></b></p></td><td><p>20.011</p></td><td><p>v33.016, 34.013, 35.012, 36.011 and later</p></td></tr><tr><td><p>ControlLogix\u00ae 5570 redundant<b></b></p></td><td><p>20.054_kit1</p></td><td><p>v33.053_kit1, 34.052_kit1, 35.052_kit1, 36.051_kit1 and late</p></td></tr></tbody></table>\n\n<br>\n\n", "base64": false}]}], "datePublic": "2024-01-30T14:00:00.000Z", "references": [{"url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "\nA denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.", "supportingMedia": [{"type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the </span><a target=\"_blank\" rel=\"nofollow\">MNRF.</a>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-119", "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-01-31T18:28:59.715Z"}}}, "cveMetadata": {"cveId": "CVE-2024-21916", "state": "PUBLISHED", "dateUpdated": "2024-08-01T22:35:34.618Z", "dateReserved": "2024-01-03T16:40:50.367Z", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "datePublished": "2024-01-31T18:28:59.715Z", "assignerShortName": "Rockwell"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:controllogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*", "matchCriteriaId": "06E12A7B-E32C-46DE-891B-B42586053A33", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:controllogix_5570_controller:-:*:*:*:*:*:*:*", "matchCriteriaId": "C16C24E2-4CB6-4413-8D48-588E0246617E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:guardlogix_5570_controller_firmware:20.011:*:*:*:*:*:*:*", "matchCriteriaId": "6D5A9D00-9B54-4A85-9E9D-652FA0BC911F", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:guardlogix_5570_controller:-:*:*:*:*:*:*:*", "matchCriteriaId": "B4B273FA-0865-4505-AAF8-1676940A3EA9", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:controllogix_5570_redundant_controller_firmware:20.054_kit1:*:*:*:*:*:*:*", "matchCriteriaId": "9CA7904D-3C8B-4CED-B2AB-0CCD266B148F", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:controllogix_5570_redundant_controller:-:*:*:*:*:*:*:*", "matchCriteriaId": "898183DD-C3AE-42EE-9891-81BFA774476A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "\nA denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF."}, {"lang": "es", "value": "Existe una vulnerabilidad de denegaci\u00f3n de servicio en controladores Rockwell Automation ControlLogix ang GuardLogix. Si se explota, el producto podr\u00eda experimentar un fallo importante no recuperable (MNRF). El dispositivo se reiniciar\u00e1 solo para recuperarse del MNRF."}], "id": "CVE-2024-21916", "lastModified": "2024-11-21T08:55:16.243", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.0, "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-01-31T19:15:08.427", "references": [{"source": "PSIRT@rockwellautomation.com", "tags": ["Vendor Advisory"], "url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.rockwellautomation.com/en-us/support/advisory.SD1661.html"}], "sourceIdentifier": "PSIRT@rockwellautomation.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}