Rockwellautomation Micrologix 1100 Firmware vulnerabilities
6 known vulnerabilities affecting rockwellautomation/micrologix_1100_firmware.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2015-6490P2CRITICALCVSS 9.8≤ 14.0002015-10-28
CVE-2015-6490 [CRITICAL] CWE-119 CVE-2015-6490: Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 de
Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices through B FRN 15.003 allows remote attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2015-6486P3MEDIUMCVSS 6.5≤ 14.0002015-10-28
CVE-2015-6486 [MEDIUM] CWE-89 CVE-2015-6486: SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 de
SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2015-6492P3HIGHCVSS 7.5≤ 14.0002015-10-28
CVE-2015-6492 [HIGH] CWE-119 CVE-2015-6492: Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow
Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow remote attackers to cause a denial of service (memory corruption and device crash) via a crafted HTTP request.
nvd
CVE-2019-10955P4MEDIUMCVSS 6.1≤ 14.002019-04-25
CVE-2019-10955 [MEDIUM] CWE-601 CVE-2019-10955: In Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earl
In Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earlier, MicroLogix 1100 Controllers v14.00 and earlier, CompactLogix 5370 L1 controllers v30.014 and earlier, CompactLogix 5370 L2 controllers v30.014 and earlier, CompactLogix 5370 L3 controllers (includes CompactLogix GuardLogix controllers) v30.014 an
nvd
CVE-2015-6491P4MEDIUMCVSS 4.0≤ 14.0002015-10-28
CVE-2015-6491 [MEDIUM] CVE-2015-6491: Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow
Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow remote authenticated users to insert the content of an arbitrary file into a FRAME element via unspecified vectors.
nvd
CVE-2015-6488P4MEDIUMCVSS 4.3≤ 14.0002015-10-28
CVE-2015-6488 [MEDIUM] CWE-79 CVE-2015-6488: Cross-site scripting (XSS) vulnerability in the web server on Allen-Bradley MicroLogix 1100 devices
Cross-site scripting (XSS) vulnerability in the web server on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd