CVE-2020-13573

Summary

A denial-of-service vulnerability exists in the Ethernet/IP server functionality of Rockwell Automation RSLinx Classic 2.57.00.14 CPR 9 SR 3. A specially crafted network request can lead to a denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aRockwell AutomationRockwell Automation RSLinx Classic 2.57.00.14 CPR 9 SR 3affected

Weaknesses

  • CWE-823: CWE-823: Use of Out-of-range Pointer Offset

ADP Enrichment

CVE Program Container

Additional References

References