CVE-2018-14827

Summary

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. A remote, unauthenticated threat actor may intentionally send specially crafted Ethernet/IP packets to Port 44818, causing the software application to stop responding and crash. The user must restart the software to regain functionality.

Affected Software

VendorProductVersion RangeStatus
Rockwell AutomationRSLinx Classic4.00.01 and prioraffected

Weaknesses

  • CWE-400: UNCONTROLLED RESOURCE CONSUMPTION ('RESOURCE EXHAUSTION') CWE-400

ADP Enrichment

CVE Program Container

Additional References

References