[Control systems] Rockwell automation security advisory (AV22-715)

Number: AV22-715
Date: 20 December 2022

On 20 December 2022, ICS-CERT published ICS Advisories to address vulnerabilities in the following products:

  • CompactLogix 5370 – versions 20 to 33
  • Compact GuardLogix 5370 – versions 28 to 33
  • ControlLogix 5570 – versions 20 to 33
  • ControlLogix 5570 redundancy – versions 20 to 33
  • GuardLogix 5570 – versions 20 to 33
  • MicroLogix 1100 – all versions
  • MicroLogix 1400 A – versions 7.000 and prior
  • MicroLogix 1400 B/C – versions 21.007 and prior

Exploitation of these vulnerabilities could result in remote code execution or denial-of-service.

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.

Date modified: