all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2023-3595, CVE-2023-3596: Rockwell Automation ControlLogix Vulnerabilities Disclosed

Add to bookmarks
July 12, 2023, 12:13 p.m. | Satnam Narang

Cyber Exposure Alerts www.tenable.com

Rockwell Automation issues advisory for multiple vulnerabilities, including a critical flaw that could lead to disruption or destruction of critical infrastructure processes.


Background


On July 12, Rockwell Automation published an advisory for multiple vulnerabilities in its Allen-Bradley ControlLogix Communications Modules. ControlLogix Communications Modules are used in many industries and sectors, including energy, transportation and water, among others, to enable communication between machines, IT systems and remote chassis.








CVEDescriptionCVSSv3Severity
CVE-2023-3595Rockwell Automation Allen-Bradley ControlLogix Communication Modules Remote Code …

advisory automation communications critical critical flaw critical infrastructure cve destruction disruption energy flaw infrastructure july modules processes rockwell rockwell automation sectors transportation vulnerabilities

Visit resource

More from www.tenable.com / Cyber Exposure Alerts

CVE-2024-24919: Check Point Security Gateway Information Disclosure Zero-Day Exploited in the Wild 3 days, 12 hours ago | www.tenable.com
Microsoft’s May 2024 Patch Tuesday Addresses 59 CVEs (CVE-2024-30051, CVE-2024-30040) 2 weeks, 4 days ago | www.tenable.com
addresses critical critical vulnerability cve +15
CVE-2024-21793, CVE-2024-26026: Proof of Concept Available for F5 BIG-IP Next Central Manager Vulnerabilities 3 weeks, 2 days ago | www.tenable.com
big big-ip big-ip next central manager centralized management +18
CVE-2024-20353, CVE-2024-20359: Frequently Asked Questions About ArcaneDoor 1 month, 1 week ago | www.tenable.com
adaptive security arcanedoor blog called +15
CVE-2024-4040: CrushFTP Virtual File System (VFS) Sandbox Escape Vulnerability Exploited 1 month, 1 week ago | www.tenable.com
advisory april crushftp customers +23
Oracle April 2024 Critical Patch Update Addresses 239 CVEs 1 month, 2 weeks ago | www.tenable.com
addresses april cpu critical +12
CVE-2024-3400: Zero-Day Vulnerability in Palo Alto Networks PAN-OS GlobalProtect Gateway Exploited in the Wild 1 month, 2 weeks ago | www.tenable.com
alto april attacks command +25
Microsoft’s April 2024 Patch Tuesday Addresses 147 CVEs (CVE-2024-29988) 1 month, 3 weeks ago | www.tenable.com
addresses april critical critical vulnerabilities +13
Frequently Asked Questions About CVE-2024-3094, A Backdoor in XZ Utils 2 months ago | www.tenable.com

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com