all InfoSec news
CVE-2023-3595, CVE-2023-3596: Rockwell Automation ControlLogix Vulnerabilities Disclosed
Cyber Exposure Alerts www.tenable.com
Rockwell Automation issues advisory for multiple vulnerabilities, including a critical flaw that could lead to disruption or destruction of critical infrastructure processes.
Background
On July 12, Rockwell Automation published an advisory for multiple vulnerabilities in its Allen-Bradley ControlLogix Communications Modules. ControlLogix Communications Modules are used in many industries and sectors, including energy, transportation and water, among others, to enable communication between machines, IT systems and remote chassis.
CVE | Description | CVSSv3 | Severity |
---|---|---|---|
CVE-2023-3595 | Rockwell Automation Allen-Bradley ControlLogix Communication Modules Remote Code … |
advisory automation communications critical critical flaw critical infrastructure cve destruction disruption energy flaw infrastructure july modules processes rockwell rockwell automation sectors transportation vulnerabilities