CVE-2023-3595

Where this vulnerability exists in the Rockwell Automation 1756 EN2* and 1756 EN3* ControlLogix communication products, it could allow a malicious user to perform remote code execution with persistence on the target system through maliciously crafted CIP messages. This includes the ability to modify, deny, and exfiltrate data passing through the device.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
RockwellCNA
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
VendorProductVersion
rockwellautomation1756-en2f_series_a_firmware
-
rockwellautomation1756-en2f_series_b_firmware
-
rockwellautomation1756-en2f_series_c_firmware
-
rockwellautomation1756-en2t_series_a_firmware
-
rockwellautomation1756-en2t_series_b_firmware
-
rockwellautomation1756-en2t_series_c_firmware
-
rockwellautomation1756-en2t_series_d_firmware
-
rockwellautomation1756-en2tr_series_a_firmware
-
rockwellautomation1756-en2tr_series_b_firmware
-
rockwellautomation1756-en2tr_series_c_firmware
-
rockwellautomation1756-en3tr_series_a_firmware
-
rockwellautomation1756-en3tr_series_b_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140010
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140010