CVE-2024-9124

Published: Oct 8, 2024Modified: Sep 22, 2025

8.2

Vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: PSIRT@rockwellautomation.com (Secondary)

Description

A denial-of-service vulnerability exists in the Rockwell Automation PowerFlex® 600T. If the device is overloaded with requests, it will become unavailable. The device may require a power cycle to recover it if it does not re-establish a connection after it stops receiving requests.

Affected (3)

Products: Rockwellautomation: Powerflex 6000t Firmware

Rockwellautomation

1 product

Powerflex 6000t Firmware

Configuration A

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Rockwellautomation Powerflex 6000t Firmware	Version 8.001
Rockwellautomation Powerflex 6000t Firmware	Version 8.002
Rockwellautomation Powerflex 6000t Firmware	Version 9.001

Running on/with	Platform Versions
Rockwellautomation Powerflex 6000t	All versions

Related CWEs

CWE-754

Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (1)

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1705.html

Source: PSIRT@rockwellautomation.com

Vendor Advisory

Timeline

No history available yet.