← Back

Rockwellautomation

rockwellautomation

337 CVEs • 468 products

Products (468)

Click to collapse
Toggle
Arena
arena
42 CVEs
Micrologix 1400 B Firmware
micrologix_1400_b_firmware
23 CVEs
Factorytalk View
factorytalk_view
18 CVEs
Thinmanager
thinmanager
16 CVEs
Micrologix 1100 Firmware
micrologix_1100_firmware
14 CVEs
Factorytalk Linx
factorytalk_linx
14 CVEs
Factorytalk Services Platform
factorytalk_services_platform
13 CVEs
Controllogix 5580 Firmware
controllogix_5580_firmware
13 CVEs
Guardlogix 5580 Firmware
guardlogix_5580_firmware
13 CVEs
Compactlogix 5380 Firmware
compactlogix_5380_firmware
12 CVEs
Factorytalk Assetcentre
factorytalk_assetcentre
12 CVEs
Micrologix 1400 Firmware
micrologix_1400_firmware
11 CVEs
Compactlogix 5480 Firmware
compactlogix_5480_firmware
11 CVEs
Armorstart St 284ee Firmware
armorstart_st_284ee_firmware
10 CVEs
Armorstart St 281e Firmware
armorstart_st_281e_firmware
10 CVEs
Rslinx
rslinx
9 CVEs
Kepserver Enterprise
kepserver_enterprise
9 CVEs
Armorstart Lt Firmware
armorstart_lt_firmware
9 CVEs
1763 L16awa Series A
1763-l16awa_series_a
8 CVEs
1763 L16awa Series B
1763-l16awa_series_b
8 CVEs
1763 L16bbb Series A
1763-l16bbb_series_a
8 CVEs
1763 L16bbb Series B
1763-l16bbb_series_b
8 CVEs
1763 L16bwa Series A
1763-l16bwa_series_a
8 CVEs
1763 L16bwa Series B
1763-l16bwa_series_b
8 CVEs
1763 L16dwd Series A
1763-l16dwd_series_a
8 CVEs
1763 L16dwd Series B
1763-l16dwd_series_b
8 CVEs
Compact Guardlogix 5380 Firmware
compact_guardlogix_5380_firmware
8 CVEs
Controllogix Controllers
controllogix_controllers
7 CVEs
Guardlogix Controllers
guardlogix_controllers
7 CVEs
Micrologix
micrologix
7 CVEs
Softlogix Controllers
softlogix_controllers
7 CVEs
1756 Enbt
1756-enbt
7 CVEs
1756 Eweb
1756-eweb
7 CVEs
1768 Enbt
1768-enbt
7 CVEs
1768 Eweb
1768-eweb
7 CVEs
1794 Aentr Flex I/o Ethernet/ip Adapter
1794-aentr_flex_i/o_ethernet/ip_adapter
7 CVEs
Compactlogix
compactlogix
7 CVEs
Compactlogix Controllers
compactlogix_controllers
7 CVEs
Compactlogix L32e Controller
compactlogix_l32e_controller
7 CVEs
Compactlogix L35e Controller
compactlogix_l35e_controller
7 CVEs
Controllogix
controllogix
7 CVEs
Flexlogix 1788 Enbt Adapter
flexlogix_1788-enbt_adapter
7 CVEs
Guardlogix
guardlogix
7 CVEs
Softlogix
softlogix
7 CVEs
Rslinx Enterprise
rslinx_enterprise
7 CVEs
1766 L32awa Series A
1766-l32awa_series_a
7 CVEs
1766 L32awa Series B
1766-l32awa_series_b
7 CVEs
1766 L32awaa Series A
1766-l32awaa_series_a
7 CVEs
1766 L32awaa Series B
1766-l32awaa_series_b
7 CVEs
1766 L32bwa Series A
1766-l32bwa_series_a
7 CVEs
1766 L32bwa Series B
1766-l32bwa_series_b
7 CVEs
1766 L32bwaa Series A
1766-l32bwaa_series_a
7 CVEs
1766 L32bwaa Series B
1766-l32bwaa_series_b
7 CVEs
1766 L32bxb Series A
1766-l32bxb_series_a
7 CVEs
1766 L32bxb Series B
1766-l32bxb_series_b
7 CVEs
1766 L32bxba Series A
1766-l32bxba_series_a
7 CVEs
1766 L32bxba Series B
1766-l32bxba_series_b
7 CVEs
Connected Components Workbench
connected_components_workbench
6 CVEs
Rslinx Classic
rslinx_classic
6 CVEs
Micrologix 1400 A Firmware
micrologix_1400_a_firmware
6 CVEs
1756 En2tr Series A Firmware
1756-en2tr_series_a_firmware
5 CVEs
1756 En2tr Series B Firmware
1756-en2tr_series_b_firmware
5 CVEs
1756 En2tr Series C Firmware
1756-en2tr_series_c_firmware
5 CVEs
Compactlogix 5370 L1 Firmware
compactlogix_5370_l1_firmware
5 CVEs
Compactlogix 5370 L2 Firmware
compactlogix_5370_l2_firmware
5 CVEs
Compactlogix 5370 L3 Firmware
compactlogix_5370_l3_firmware
5 CVEs
Compact Guardlogix 5370 Firmware
compact_guardlogix_5370_firmware
5 CVEs
Rslogix 500
rslogix_500
5 CVEs
Aadvance Controller
aadvance_controller
5 CVEs
Isagraf Free Runtime
isagraf_free_runtime
5 CVEs
Isagraf Runtime
isagraf_runtime
5 CVEs
Micro810 Firmware
micro810_firmware
5 CVEs
Micro820 Firmware
micro820_firmware
5 CVEs
Micro830 Firmware
micro830_firmware
5 CVEs
Micro850 Firmware
micro850_firmware
5 CVEs
Micro870 Firmware
micro870_firmware
5 CVEs
Factorytalk Policy Manager
factorytalk_policy_manager
5 CVEs
1756 En4tr Firmware
1756-en4tr_firmware
5 CVEs
Thinmanager Thinserver
thinmanager_thinserver
5 CVEs
Pavilion8
pavilion8
5 CVEs
Studio 5000 Logix Designer
studio_5000_logix_designer
4 CVEs
Controllogix 5570 Firmware
controllogix_5570_firmware
4 CVEs
Guardlogix 5570 Firmware
guardlogix_5570_firmware
4 CVEs
Isagraf Workbench
isagraf_workbench
4 CVEs
Factorytalk System Services
factorytalk_system_services
4 CVEs
Compact Guardlogix 5380 Sil 2 Firmware
compact_guardlogix_5380_sil_2_firmware
4 CVEs
Compact Guardlogix 5380 Sil 3 Firmware
compact_guardlogix_5380_sil_3_firmware
4 CVEs
Controllogix 1756 Enbt/a Ethernet/ Ip Bridge
controllogix_1756-enbt/a_ethernet/_ip_bridge
3 CVEs
Rslogix 5000
rslogix_5000
3 CVEs
1756 En2f Series A Firmware
1756-en2f_series_a_firmware
3 CVEs
1756 En2f Series B Firmware
1756-en2f_series_b_firmware
3 CVEs
1756 En2f Series C Firmware
1756-en2f_series_c_firmware
3 CVEs
1756 En2t Series A Firmware
1756-en2t_series_a_firmware
3 CVEs
1756 En2t Series B Firmware
1756-en2t_series_b_firmware
3 CVEs
1756 En2t Series C Firmware
1756-en2t_series_c_firmware
3 CVEs
1756 En2t Series D Firmware
1756-en2t_series_d_firmware
3 CVEs
1756 En3tr Series A Firmware
1756-en3tr_series_a_firmware
3 CVEs
1756 En3tr Series B Firmware
1756-en3tr_series_b_firmware
3 CVEs
Powermonitor 1000 Firmware
powermonitor_1000_firmware
3 CVEs
Armor Compact Guardlogix 5370 Firmware
armor_compact_guardlogix_5370_firmware
3 CVEs

CVEs (337)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2017-12089
1Rockwellautomation
1Micrologix 1400 B Firmware
Nov 21, 2024
Apr 5, 2018
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in...Show more
An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in halted operations. An attacker can send an unauthenticated packet to trigger this vulnerability.Show less
CVE-2017-12088
1Rockwellautomation
1Micrologix 1400 B Firmware
Nov 21, 2024
Apr 5, 2018
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in...Show more
An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladder logic. An attacker can send one unauthenticated packet to trigger this vulnerabilityShow less
CVE-2017-16740
1Rockwellautomation
61766 L32awa Firmware
1766 L32awaa Firmware1766 L32bwa Firmware+3 more
Nov 21, 2024
Jan 9, 2018
N/A· v4
10.0 CRITICAL· v3
7.5 HIGH· v2
A Buffer Overflow issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1400 Controllers, Series B and C Versions 21.002 and earlier. The stack-based buffer overflow vulnerability has been identified, whic...Show more
A Buffer Overflow issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1400 Controllers, Series B and C Versions 21.002 and earlier. The stack-based buffer overflow vulnerability has been identified, which may allow remote code execution.Show less
CVE-2017-14022
1Rockwellautomation
1Factorytalk Alarms And Events
May 13, 2026
Dec 23, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An Improper Input Validation issue was discovered in Rockwell Automation FactoryTalk Alarms and Events, Version 2.90 and earlier. An unauthenticated attacker with remote access to a network with FactoryTalk Alarms and Ev...Show more
An Improper Input Validation issue was discovered in Rockwell Automation FactoryTalk Alarms and Events, Version 2.90 and earlier. An unauthenticated attacker with remote access to a network with FactoryTalk Alarms and Events can send a specially crafted set of packets packet to Port 403/TCP (the history archiver service), causing the service to either stall or terminate.Show less
CVE-2017-7924
1Rockwellautomation
41763 L16awa Firmware
1763 L16bbb Firmware1763 L16bwa Firmware+1 more
May 13, 2026
Sep 20, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An Improper Input Validation issue was discovered in Rockwell Automation MicroLogix 1100 controllers 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and 1763-L16DWD. A remote, unauthenticated attacker could send a single, special...Show more
An Improper Input Validation issue was discovered in Rockwell Automation MicroLogix 1100 controllers 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and 1763-L16DWD. A remote, unauthenticated attacker could send a single, specially crafted Programmable Controller Communication Commands (PCCC) packet to the controller that could potentially cause the controller to enter a DoS condition.Show less
CVE-2017-7903
1Rockwellautomation
201763 L16awa Series A
1763 L16awa Series B1763 L16bbb Series A+17 more
Jun 3, 2026
Jun 30, 2017
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
A Weak Password Requirements issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A a...Show more
A Weak Password Requirements issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. The affected products use a numeric password with a small maximum character size for the password.Show less
CVE-2017-7902
1Rockwellautomation
201763 L16awa Series A
1763 L16awa Series B1763 L16bbb Series A+17 more
May 13, 2026
Jun 30, 2017
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16...Show more
A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. The affected product reuses nonces, which may allow an attacker to capture and replay a valid request until the nonce is changed.Show less
CVE-2017-7901
1Rockwellautomation
201763 L16awa Series A
1763 L16awa Series B1763 L16bbb Series A+17 more
May 13, 2026
Jun 30, 2017
N/A· v4
8.6 HIGH· v3
9.0 HIGH· v2
A Predictable Value Range from Previous Values issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-...Show more
A Predictable Value Range from Previous Values issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. Insufficiently random TCP initial sequence numbers are generated, which may allow an attacker to predict the numbers from previous values. This may allow an attacker to spoof or disrupt TCP connections, resulting in a denial of service for the target device.Show less
CVE-2017-7899
1Rockwellautomation
201763 L16awa Series A
1763 L16awa Series B1763 L16bbb Series A+17 more
May 13, 2026
Jun 30, 2017
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
An Information Exposure issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B,...Show more
An Information Exposure issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. User credentials are sent to the web server using the HTTP GET method, which may result in the credentials being logged. This could make user credentials available for unauthorized retrieval.Show less
CVE-2017-7898
1Rockwellautomation
201763 L16awa Series A
1763 L16awa Series B1763 L16bbb Series A+17 more
Jun 3, 2026
Jun 30, 2017
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
An Improper Restriction of Excessive Authentication Attempts issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior v...Show more
An Improper Restriction of Excessive Authentication Attempts issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. There are no penalties for repeatedly entering incorrect passwords.Show less
CVE-2017-7914
1Rockwellautomation
1Panelview Plus 6 700 1500 Firmware
May 13, 2026
Jun 14, 2017
N/A· v4
8.6 HIGH· v3
7.5 HIGH· v2
A Missing Authorization issue was discovered in Rockwell Automation PanelView Plus 6 700-1500 6.00.04, 6.00.05, 6.00.42, 6.00-20140306, 6.10.20121012, 6.10-20140122, 7.00-20121012, 7.00-20130108, 7.00-20130325, 7.00-2013...Show more
A Missing Authorization issue was discovered in Rockwell Automation PanelView Plus 6 700-1500 6.00.04, 6.00.05, 6.00.42, 6.00-20140306, 6.10.20121012, 6.10-20140122, 7.00-20121012, 7.00-20130108, 7.00-20130325, 7.00-20130619, 7.00-20140128, 7.00-20140310, 7.00-20140429, 7.00-20140621, 7.00-20140729, 7.00-20141022, 8.00-20140730, and 8.00-20141023. There is no authorization check when connecting to the device, allowing an attacker remote access.Show less
CVE-2017-5176
1Rockwellautomation
1Connected Components Workbench
May 13, 2026
May 19, 2017
N/A· v4
7.0 HIGH· v3
6.2 MEDIUM· v2
A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). The following versions are affected: Connected Components Workbench - Developer Edition, v9.01.00 and earlier: 9328-CCWDEVENE...Show more
A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). The following versions are affected: Connected Components Workbench - Developer Edition, v9.01.00 and earlier: 9328-CCWDEVENE, 9328-CCWDEVZHE, 9328-CCWDEVFRE, 9328-CCWDEVITE, 9328-CCWDEVDEE, 9328-CCWDEVESE, and 9328-CCWDEVPTE; and Connected Components Workbench - Free Standard Edition (All Supported Languages), v9.01.00 and earlier. Certain DLLs included with versions of CCW software can be potentially hijacked to allow an attacker to gain rights to a victim's affected personal computer. Such access rights can be at the same or potentially higher level of privileges as the compromised user account, including and up to computer administrator privileges.Show less
CVE-2017-6024
1Rockwellautomation
2Compactlogix 5380 Firmware
Controllogix 5580 Firmware
May 13, 2026
May 6, 2017
N/A· v4
5.9 MEDIUM· v3
7.1 HIGH· v2
A Resource Exhaustion issue was discovered in Rockwell Automation ControlLogix 5580 controllers V28.011, V28.012, and V28.013; ControlLogix 5580 controllers V29.011; CompactLogix 5380 controllers V28.011; and CompactLogi...Show more
A Resource Exhaustion issue was discovered in Rockwell Automation ControlLogix 5580 controllers V28.011, V28.012, and V28.013; ControlLogix 5580 controllers V29.011; CompactLogix 5380 controllers V28.011; and CompactLogix 5380 controllers V29.011. This vulnerability may allow an attacker to cause a denial of service condition by sending a series of specific CIP-based commands to the controller.Show less
CVE-2016-9343
1Rockwellautomation
161768 Compact Guardlogix L4xs Controller Firmware
1768 Compactlogix L4x Controller Firmware1769 Compactlogix 5370 L1 Controller Firmware+13 more
May 13, 2026
Feb 13, 2017
N/A· v4
10.0 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sending malformed commo...Show more
An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sending malformed common industrial protocol (CIP) packet, an attacker may be able to overflow a stack-based buffer and execute code on the controller or initiate a nonrecoverable fault resulting in a denial of service.Show less
CVE-2016-9338
1Rockwellautomation
201763 L16awa Series A
1763 L16awa Series B1763 L16bbb Series A+17 more
May 13, 2026
Feb 13, 2017
N/A· v4
2.7 LOW· v3
4.0 MEDIUM· v2
An issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 controller 1763-L16AWA, Series A and B, Version 14.000 and prior versions; 1763-L16BBB, Series A and B, Version 14.000 and prior versions; 1763...Show more
An issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 controller 1763-L16AWA, Series A and B, Version 14.000 and prior versions; 1763-L16BBB, Series A and B, Version 14.000 and prior versions; 1763-L16BWA, Series A and B, Version 14.000 and prior versions; and 1763-L16DWD, Series A and B, Version 14.000 and prior versions. Because of an Incorrect Permission Assignment for Critical Resource, users with administrator privileges may be able to remove all administrative users requiring a factory reset to restore ancillary web server function. Exploitation of this vulnerability will still allow the affected device to function in its capacity as a controller.Show less
CVE-2016-9334
1Rockwellautomation
201763 L16awa Series A
1763 L16awa Series B1763 L16bbb Series A+17 more
May 13, 2026
Feb 13, 2017
N/A· v4
7.3 HIGH· v3
5.0 MEDIUM· v2
An issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 controller 1763-L16AWA, Series A and B, Version 14.000 and prior versions; 1763-L16BBB, Series A and B, Version 14.000 and prior versions; 1763...Show more
An issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 controller 1763-L16AWA, Series A and B, Version 14.000 and prior versions; 1763-L16BBB, Series A and B, Version 14.000 and prior versions; 1763-L16BWA, Series A and B, Version 14.000 and prior versions; and 1763-L16DWD, Series A and B, Version 14.000 and prior versions. User credentials are sent to the web server in clear text, which may allow an attacker to discover the credentials if they are able to observe traffic between the web browser and the server.Show less
CVE-2016-5814
1Rockwellautomation
5Rslogix 500 Professional Edition
Rslogix 500 Standard EditionRslogix 500 Starter Edition+2 more
May 6, 2026
Sep 19, 2016
N/A· v4
8.6 HIGH· v3
9.3 HIGH· v2
Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote attackers to execu...Show more
Buffer overflow in Rockwell Automation RSLogix Micro Starter Lite, RSLogix Micro Developer, RSLogix 500 Starter Edition, RSLogix 500 Standard Edition, and RSLogix 500 Professional Edition allows remote attackers to execute arbitrary code via a crafted RSS project file.Show less
CVE-2016-5645
1Rockwellautomation
61766 L32awa
1766 L32awaa1766 L32bwa+3 more
Jun 3, 2026
Aug 24, 2016
N/A· v4
7.3 HIGH· v3
7.5 HIGH· v2
Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote attackers to load arbi...Show more
Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote attackers to load arbitrary firmware updates by leveraging knowledge of this community.Show less
CVE-2016-4531
1Rockwellautomation
1Factorytalk Energrymetrix
May 6, 2026
Jul 28, 2016
N/A· v4
7.3 HIGH· v3
7.5 HIGH· v2
Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 does not invalidate credentials upon a logout action, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.
CVE-2016-4522
1Rockwellautomation
1Factorytalk Energrymetrix
May 6, 2026
Jul 28, 2016
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.