CVE-2022-1797 — MEDIUM (6.8)

Q: How severe is CVE-2022-1797?

CVE-2022-1797 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-1797?

Check the references section above for vendor advisories and patch information. Affected products include: Rockwellautomation Compactlogix 5380 Firmware, Rockwellautomation Compactlogix 5380, Rockwellautomation Compact Guardlogix 5380 Firmware, Rockwellautomation Compact Guardlogix 5380, Rockwellautomation Compactlogix 5480 Firmware.

Vulnerability Description

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownload the user project file to bring the device back online.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Rockwellautomation	Compactlogix 5380 Firmware	< 33.011
Rockwellautomation	Compactlogix 5380	-
Rockwellautomation	Compact Guardlogix 5380 Firmware	< 33.011
Rockwellautomation	Compact Guardlogix 5380	-
Rockwellautomation	Compactlogix 5480 Firmware	< 33.011
Rockwellautomation	Compactlogix 5480	-
Rockwellautomation	Controllogix 5580 Firmware	< 33.011
Rockwellautomation	Controllogix 5580	-
Rockwellautomation	Guardlogix 5580 Firmware	< 33.011
Rockwellautomation	Guardlogix 5580	-
Rockwellautomation	Compactlogix 5370 Firmware	< 34.011
Rockwellautomation	Compactlogix 5370	-
Rockwellautomation	Compact Guardlogix 5370 Firmware	< 34.011
Rockwellautomation	Compact Guardlogix 5370	-
Rockwellautomation	Controllogix 5570 Firmware	< 34.011
Rockwellautomation	Controllogix 5570	-
Rockwellautomation	Guardlogix 5570 Firmware	< 34.011
Rockwellautomation	Guardlogix 5570	-

Related Weaknesses (CWE)

CWE-400

References

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135559Permissions RequiredVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-144-01Third Party AdvisoryUS Government Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135559Permissions RequiredVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-144-01Third Party AdvisoryUS Government Resource

FAQ

What is CVE-2022-1797?

CVE-2022-1797 is a vulnerability with a CVSS score of 6.8 (MEDIUM). A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fa...

How severe is CVE-2022-1797?

CVE-2022-1797 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-1797?

Check the references section above for vendor advisories and patch information. Affected products include: Rockwellautomation Compactlogix 5380 Firmware, Rockwellautomation Compactlogix 5380, Rockwellautomation Compact Guardlogix 5380 Firmware, Rockwellautomation Compact Guardlogix 5380, Rockwellautomation Compactlogix 5480 Firmware.