CVE-2018-14821

Summary

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote, unauthenticated threat actor to intentionally send a malformed CIP packet to Port 44818, causing the RSLinx Classic application to terminate. The user will need to manually restart the software to regain functionality.

Affected Software

VendorProductVersion RangeStatus
Rockwell AutomationRSLinx Classic4.00.01 and prioraffected

Weaknesses

  • CWE-122: HEAP-BASED BUFFER OVERFLOW CWE-122

ADP Enrichment

CVE Program Container

Additional References

References