CVE-2024-6242
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H
Summary
A vulnerability exists in Rockwell Automation affected products that allows a threat actor to bypass the Trusted® Slot feature in a ControlLogix® controller. If exploited on any affected module in a 1756 chassis, a threat actor could potentially execute CIP commands that modify user projects and/or device configuration on a Logix controller in the chassis.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Rockwell Automation | ControlLogix® 5580 (1756-L8z) | V28 | affected |
| Rockwell Automation | GuardLogix® 5580 (1756-L8zS) | V31 | affected |
| Rockwell Automation | 1756-EN4TR | V2 | affected |
| Rockwell Automation | 1756-EN2T | v5.007(unsigned)/v5.027(signed) | affected |
| Rockwell Automation | 1756-EN2F | v5.007(unsigned)/v5.027(signed) | affected |
| Rockwell Automation | 1756-EN2TR | v5.007(unsigned)/v5.027(signed) | affected |
| Rockwell Automation | 1756-EN3TR | v5.007(unsigned)/v5.027(signed) | affected |
| Rockwell Automation | 1756-EN2T | 1756-EN2T/D: V10.006 | affected |
| Rockwell Automation | 1756-EN2F | 1756-EN2F/C: V10.009 | affected |
| Rockwell Automation | 1756-EN2TR | 1756-EN2TR/C: V10.007 | affected |
| Rockwell Automation | 1756-EN3TR | 1756-EN3TR/B: V10.007 | affected |
| Rockwell Automation | 1756-EN2TP | 1756-EN2TP/A: V10.020 | affected |
Weaknesses
- CWE-420: CWE-420: Unprotected Alternate Channel
Workarounds
Affected Product
First Known in Firmware Revision
Corrected in Firmware Revision
ControlLogix® 5580 (1756-L8z)
V28
V32.016, V33.015, V34.014, V35.011 and later
GuardLogix® 5580 (1756-L8zS)
V31
V32.016, V33.015, V34.014, V35.011 and later
1756-EN4TR
V2
V5.001 and later
1756-EN2T, Series A/B/C
1756-EN2F, Series A/B
1756-EN2TR, Series A/B
1756-EN3TR, Series B
v5.007(unsigned)/v5.027(signed)
No fix is available for Series A/B/C. Users can upgrade to Series D to remediate this vulnerability
1756-EN2T, Series D
1756-EN2F, Series C
1756-EN2TR, Series C
1756-EN3TR, Series B
1756-EN2TP, Series A
1756-EN2T/D: V10.006
1756-EN2F/C: V10.009
1756-EN2TR/C: V10.007
1756-EN3TR/B: V10.007
1756-EN2TP/A: V10.020
V12.001 and later
Users using the affected firmware and who are not able to upgrade to one of the corrected versions are encouraged to apply the following mitigation and security best practices, where possible.
Limit the allowed CIP commands on controllers by setting the mode switch to the RUN position.
Security Best Practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.