Vulnerability Description
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, The cryptographic function utilized to protect the password in MicroLogix is discoverable.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rockwellautomation | Micrologix 1400 A Firmware | All versions |
| Rockwellautomation | Micrologix 1400 B Firmware | <= 21.001 |
| Rockwellautomation | Micrologix 1400 | - |
| Rockwellautomation | Micrologix 1100 Firmware | All versions |
| Rockwellautomation | Micrologix 1100 | - |
| Rockwellautomation | Rslogix 500 | <= 12.001 |
Related Weaknesses (CWE)
References
- https://www.us-cert.gov/ics/advisories/icsa-20-070-06Third Party AdvisoryUS Government Resource
- https://www.us-cert.gov/ics/advisories/icsa-20-070-06Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2020-6984?
CVE-2020-6984 is a vulnerability with a CVSS score of 7.5 (HIGH). Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, The cryptographic ...
How severe is CVE-2020-6984?
CVE-2020-6984 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-6984?
Check the references section above for vendor advisories and patch information. Affected products include: Rockwellautomation Micrologix 1400 A Firmware, Rockwellautomation Micrologix 1400 B Firmware, Rockwellautomation Micrologix 1400, Rockwellautomation Micrologix 1100 Firmware, Rockwellautomation Micrologix 1100.