Impact
The 1794-AENTR adapter suffers from improper memory handling of CIP protocol requests, leading to a denial-of-service when the adapter faults. This fault severely impacts the connection to associated I/O modules, requiring a manual reset. The vulnerability’s nature is a memory leak (CWE-401), which potentially exhausts adapter resources during normal operation.
Affected Systems
Affected are Rockwell Automation FLEX I/O EtherNet/IP Adapters, specifically the 1794-AENTR model. No specific firmware version numbers are supplied, so all installations of this adapter type are potentially impacted until a patch is applied.
Risk and Exploitability
The CVSS score of 8.7 indicates high severity, coupled with an EPSS score of less than 1% meaning exploitation is unlikely under current conditions. The vulnerability is not listed in CISA KEV, and no official solution is provided currently. It is likely that a remote attacker could exploit the issue by sending crafted CIP protocol requests over the network, which would trigger the memory error and cause a fault. Proper remediation can mitigate this risk.
OpenCVE Enrichment