CVE-2024-6207

CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html and send a specially crafted CIP message to the device.  If exploited, a threat actor could help prevent access to the legitimate user and end connections to connected devices including the workstation.  To recover the controllers, a download is required which ends any process that the controller is running.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
RockwellCNA
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 39%
VendorProductVersion
rockwellautomationcontrollogix_5580_firmware
28.011 ≤
𝑥
< 33.017
rockwellautomationcontrollogix_5580_firmware
34.011 ≤
𝑥
< 34.014
rockwellautomationcontrollogix_5580_firmware
35.011 ≤
𝑥
< 35.013
rockwellautomationcontrollogix_5580_process_firmware
33.011 ≤
𝑥
< 33.017
rockwellautomationcontrollogix_5580_process_firmware
34.011 ≤
𝑥
< 34.014
rockwellautomationcontrollogix_5580_process_firmware
35.011 ≤
𝑥
< 35.013
rockwellautomationguardlogix_5580_firmware
31.011 ≤
𝑥
< 33.017
rockwellautomationguardlogix_5580_firmware
34.011 ≤
𝑥
< 34.014
rockwellautomationguardlogix_5580_firmware
35.011 ≤
𝑥
< 35.013
rockwellautomationcompactlogix_5380_firmware
28.011 ≤
𝑥
< 33.017
rockwellautomationcompactlogix_5380_firmware
34.011 ≤
𝑥
< 34.014
rockwellautomationcompactlogix_5380_firmware
35.011 ≤
𝑥
< 35.013
rockwellautomationcompact_guardlogix_5380_sil_2_firmware
31.011 ≤
𝑥
< 33.017
rockwellautomationcompact_guardlogix_5380_sil_2_firmware
34.011 ≤
𝑥
< 34.014
rockwellautomationcompact_guardlogix_5380_sil_2_firmware
35.011 ≤
𝑥
< 35.013
rockwellautomationcompact_guardlogix_5380_sil_3_firmware
32.013 ≤
𝑥
< 33.017
rockwellautomationcompact_guardlogix_5380_sil_3_firmware
34.011 ≤
𝑥
< 34.014
rockwellautomationcompact_guardlogix_5380_sil_3_firmware
35.011 ≤
𝑥
< 35.013
rockwellautomationcompactlogix_5480_firmware
32.011 ≤
𝑥
< 33.017
rockwellautomationcompactlogix_5480_firmware
34.011 ≤
𝑥
< 34.014
rockwellautomationcompactlogix_5480_firmware
35.011 ≤
𝑥
< 35.013
rockwellautomationfactorytalk_logix_echo_firmware
33.011 ≤
𝑥
< 34.014
rockwellautomationfactorytalk_logix_echo_firmware
35.011 ≤
𝑥
< 35.013
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1707.html