Sign-up

ID

VAR-202103-1793


TITLE

Allen-Bradley CompactLogix L16ER has industrial control equipment vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2021-08406

DESCRIPTION

Allen-Bradley Automation provides customers with a complete set of components, products, control and information platforms, as well as support services and manufacturing solutions. Allen-Bradley CompactLogix L16ER has industrial control equipment vulnerabilities. Attackers can use vulnerabilities to cause an internal error in the controller to be prompted when the engineering software is connected, and it cannot be recovered automatically.

Trust: 0.6

sources: CNVD: CNVD-2021-08406

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-08406

AFFECTED PRODUCTS

vendor:allen bradleymodel:compactlogix l16erscope:eqversion:20.14

Trust: 0.6

sources: CNVD: CNVD-2021-08406

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-08406
value: HIGH

Trust: 0.6

CNVD: CNVD-2021-08406
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-08406

EXTERNAL IDS

db:CNVDid:CNVD-2021-08406

Trust: 0.6

sources: CNVD: CNVD-2021-08406

SOURCES

db:CNVDid:CNVD-2021-08406

LAST UPDATE DATE

2022-05-04T10:07:13.704000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-08406date:2021-02-04T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-08406date:2021-03-05T00:00:00