Number: AV22-715
Date: 20 December 2022
On 20 December 2022, ICS-CERT published ICS Advisories to address vulnerabilities in the following products:
- CompactLogix 5370 – versions 20 to 33
- Compact GuardLogix 5370 – versions 28 to 33
- ControlLogix 5570 – versions 20 to 33
- ControlLogix 5570 redundancy – versions 20 to 33
- GuardLogix 5570 – versions 20 to 33
- MicroLogix 1100 – all versions
- MicroLogix 1400 A – versions 7.000 and prior
- MicroLogix 1400 B/C – versions 21.007 and prior
Exploitation of these vulnerabilities could result in remote code execution or denial-of-service.
The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.