← Back

CVE-2018-17924

nvd nist
Published: Dec 7, 2018Modified: Jun 3, 2026

JSON object

Loading...
8.6
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 4.0
Source: NVD

Description

Rockwell Automation MicroLogix 1400 Controllers and 1756 ControlLogix Communications Modules An unauthenticated, remote threat actor could send a CIP connection request to an affected device, and upon successful connection, send a new IP configuration to the affected device even if the controller in the system is set to Hard RUN mode. When the affected device accepts this new IP configuration, a loss of communication occurs between the device and the rest of the system as the system traffic is still attempting to communicate with the device via the overwritten IP address.

Affected (16)

Rockwellautomation
16 products
Micrologix 1400 Firmware
1756 Enbt Firmware
1756 Eweb Series A Firmware
1756 Eweb Series B Firmware
1756 En2f Series A Firmware
1756 En2f Series B Firmware
1756 En2f Series C Firmware
1756 En2t Series A Firmware
1756 En2t Series B Firmware
1756 En2t Series C Firmware
1756 En2t Series D Firmware
1756 En2tr Series A Firmware
1756 En2tr Series B Firmware
1756 En2tr Series C Firmware
1756 En3tr Series A Firmware
1756 En3tr Series B Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Micrologix 1400 Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
Micrologix 1400
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 Enbt Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 Enbt
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 Eweb Series A Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 Eweb Series A
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 Eweb Series B Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 Eweb Series B
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2f Series A Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En2f Series A
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2f Series B Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En2f Series B
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2f Series C Firmware
Up to 10.10
Running on/withPlatform Versions
Rockwellautomation
1756 En2f Series C
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2t Series A Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En2t Series A
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2t Series B Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En2t Series B
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2t Series C Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En2t Series C
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2t Series D Firmware
Up to 10.10
Running on/withPlatform Versions
Rockwellautomation
1756 En2t Series D
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2tr Series A Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En2tr Series A
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2tr Series B Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En2tr Series B
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En2tr Series C Firmware
Up to 10.10
Running on/withPlatform Versions
Rockwellautomation
1756 En2tr Series C
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En3tr Series A Firmware
All versions
Running on/withPlatform Versions
Rockwellautomation
1756 En3tr Series A
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
1756 En3tr Series B Firmware
Up to 10.10
Running on/withPlatform Versions
Rockwellautomation
1756 En3tr Series B
All versions

Related CWEs

CWE-306
Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

References (4)

Source: ics-cert@hq.dhs.gov
Third Party AdvisoryVDB Entry
Source: ics-cert@hq.dhs.gov
MitigationThird Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationThird Party AdvisoryUS Government Resource

Timeline

No history available yet.