CVE-2020-6111

Summary

An exploitable denial-of-service vulnerability exists in the IPv4 functionality of Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 16.000, Series B FRN 15.002, Series B FRN 15.000, Series B FRN 14.000, Series B FRN 13.000, Series B FRN 12.000, Series B FRN 11.000 and Series B FRN 10.000. A specially crafted packet can cause a major error, resulting in a denial of service. An attacker can send a malicious packet to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aAllen-BradleyAllen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 10.000, Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 11.000, Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 12.000, Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 13.000, Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 14.000, Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 15.000, Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 15.002, Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 16.000affected

Weaknesses

  • CWE-189: CWE-189: Numeric Errors

ADP Enrichment

CVE Program Container

Additional References

References