CVE-2025-7353

Summary

A security issue exists due to the web-based debugger agent enabled on Rockwell Automation ControlLogix® Ethernet Modules. If a specific IP address is used to connect to the WDB agent, it can allow remote attackers to perform memory dumps, modify memory, and control execution flow.

Affected Software

VendorProductVersion RangeStatus
Rockwell Automation1756-EN2T/DVersion 11.004 or belowaffected
Rockwell Automation1756-EN2F/CVersion 11.004 or belowaffected
Rockwell Automation1756-EN2TR/CVersion 11.004 or belowaffected
Rockwell Automation1756-EN3TR/BVersion 11.004 or belowaffected
Rockwell Automation1756-EN2TP/AVersion 11.004 or belowaffected

Weaknesses

  • CWE-1188: CWE-1188: Initialization of a Resource with an Insecure Default

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References