Description
A denial of service security issue exists in the
affected product. The security issue stems from a fault occurring when a
crafted CIP message is sent. Devices with less memory are more likely to be
affected. This can result in a major nonrecoverable fault (MNRF). A program
download is required to recover.
Published: 2026-06-16
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A fault in the controller occurs when it receives a crafted CIP message, causing a major nonrecoverable fault that renders the device inoperable until a program download is performed. This vulnerability does not compromise confidentiality or integrity, but it severely disrupts availability, preventing the controller from executing its intended logic. The weakness is identified as CWE‑404, which relates to missing resource handling that leads to failure conditions.

Affected Systems

The affected hardware is Rockwell Automation CompactLogix and ControlLogix 5370 and 5570 controllers. All firmware versions prior to 34.016, 35.015, 36.012, and 37.011 are potentially vulnerable, especially on devices with limited memory resources.

Risk and Exploitability

The CVSS score of 8.7 classifies this as a high‑severity issue, yet the EPSS score is below 1 %, indicating a very low likelihood of exploitation in the wild. It is not listed in CISA KEV. The likely attack vector is a remote attacker on the industrial network who can inject specially crafted CIP messages to trigger the fault. No special conditions beyond normal network access appear to be required for exploitation.

Generated by OpenCVE AI on June 17, 2026 at 21:39 UTC.

Remediation

Vendor Solution

Upgrade to  Version 34.016 and laterVersion 35.015 and later Version 36.012 and later Version 37.011 and later

OpenCVE Recommended Actions

  • Upgrade the controller firmware to version 34.016 or later, 35.015 or later, 36.012 or later, or 37.011 or later.
  • If an immediate firmware upgrade is not feasible, reduce the available memory space or segregate the device from untrusted CIP traffic using network segmentation or firewall rules to limit access to the controller.
  • Restrict or disable unused CIP services and monitor CIP traffic for anomalous messages that could trigger a fault.

Generated by OpenCVE AI on June 17, 2026 at 21:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Rockwellautomation
Rockwellautomation compactlogix
Rockwellautomation controllogix
Vendors & Products Rockwellautomation
Rockwellautomation compactlogix
Rockwellautomation controllogix

Tue, 16 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 16 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
Description A denial of service security issue exists in the affected product. The security issue stems from a fault occurring when a crafted CIP message is sent. Devices with less memory are more likely to be affected. This can result in a major nonrecoverable fault (MNRF). A program download is required to recover.
Title Rockwell Automation Logix 5370 and 5570 Controllers Vulnerable To Denial of Service Via CIP
Weaknesses CWE-404
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Rockwellautomation Compactlogix Controllogix
cve-icon MITRE

Status: PUBLISHED

Assigner: Rockwell

Published:

Updated: 2026-06-16T15:20:36.449Z

Reserved: 2026-06-04T19:20:43.192Z

Link: CVE-2026-11317

cve-icon Vulnrichment

Updated: 2026-06-16T15:20:32.459Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T15:16:34.607

Modified: 2026-06-16T15:26:04.250

Link: CVE-2026-11317

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-16T16:30:16Z

Weaknesses
  • CWE-404

    Improper Resource Shutdown or Release