CVE-2025-13824

Vulnerability Description

A security issue exists due to improper handling of malformed CIP packets during fuzzing. The controller enters a hard fault with solid red Fault LED and becomes unresponsive. Upon power cycle, the controller will enter recoverable fault where the MS LED and Fault LED become flashing red and reports fault code 0xF019. To recover, clear the fault.

Related Weaknesses (CWE)

CWE-763

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/adviso

FAQ

What is CVE-2025-13824?

CVE-2025-13824 is a documented vulnerability. A security issue exists due to improper handling of malformed CIP packets during fuzzing. The controller enters a hard fault with solid red Fault LED and becomes unresponsive. Upon power cycle, the co...

How severe is CVE-2025-13824?

CVSS scoring is not yet available for CVE-2025-13824. Check NVD for updates.

Is there a patch for CVE-2025-13824?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.