Vulnerability Description
A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rockwellautomation | Controllogix 5570 Controller Firmware | 20.011 |
| Rockwellautomation | Controllogix 5570 Controller | - |
| Rockwellautomation | Guardlogix 5570 Controller Firmware | 20.011 |
| Rockwellautomation | Guardlogix 5570 Controller | - |
| Rockwellautomation | Controllogix 5570 Redundant Controller Firmware | 20.054_kit1 |
| Rockwellautomation | Controllogix 5570 Redundant Controller | - |
Related Weaknesses (CWE)
References
- https://www.rockwellautomation.com/en-us/support/advisory.SD1661.htmlVendor Advisory
- https://www.rockwellautomation.com/en-us/support/advisory.SD1661.htmlVendor Advisory
FAQ
What is CVE-2024-21916?
CVE-2024-21916 is a vulnerability with a CVSS score of 8.6 (HIGH). A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (...
How severe is CVE-2024-21916?
CVE-2024-21916 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-21916?
Check the references section above for vendor advisories and patch information. Affected products include: Rockwellautomation Controllogix 5570 Controller Firmware, Rockwellautomation Controllogix 5570 Controller, Rockwellautomation Guardlogix 5570 Controller Firmware, Rockwellautomation Guardlogix 5570 Controller, Rockwellautomation Controllogix 5570 Redundant Controller Firmware.