What is the severity of CVE-2010-5305?

CVE-2010-5305 is considered a high severity vulnerability due to the risk of unauthorized access to sensitive control systems.

How do I fix CVE-2010-5305?

To fix CVE-2010-5305, implement strong password policies and restrict access to the affected Rockwell Automation controllers.

What systems are affected by CVE-2010-5305?

CVE-2010-5305 affects Rockwell Automation RSLogix 1785-Lx and 1747-L5x controllers.

What are the potential consequences of CVE-2010-5305?

The potential consequences of CVE-2010-5305 include unauthorized programming and configuration alterations to critical industrial control systems.

Is CVE-2010-5305 actively exploited?

There is no public indication that CVE-2010-5305 is actively exploited, but the potential for exploitation exists.

Vulnerability/
CVE-2010-5305

critical

9.8

CWE

284 255

26/3/2019

14/4/2025

CVE-2010-5305

First published: Tue Mar 26 2019(Updated: )

The potential exists for exposure of the product's password used to restrict unauthorized access to Rockwell PLC5/SLC5/0x/RSLogix 1785-Lx and 1747-L5x controllers. The potential exists for an unauthorized programming and configuration client to gain access to the product and allow changes to the product’s configuration or program. When applicable, upgrade product firmware to a version that includes enhanced security functionality compatible with Rockwell Automation's FactoryTalk Security services.

Credit: ics-cert@hq.dhs.gov

Affected Software	Affected Version	How to fix
RSLogix
Rockwell Automation PLC-5 Controller
Rockwell Automation PLC-5 Controller
Rockwell Automation SLC 5/01 1747-L5x Firmware
Rockwell Automation SLC 5/01 1747-L5x
All of
Rockwell Automation PLC-5 Controller
Rockwell Automation PLC-5 Controller
All of
Rockwell Automation SLC 5/01 1747-L5x Firmware
Rockwell Automation SLC 5/01 1747-L5x

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-5305?
CVE-2010-5305 is considered a high severity vulnerability due to the risk of unauthorized access to sensitive control systems.
How do I fix CVE-2010-5305?
To fix CVE-2010-5305, implement strong password policies and restrict access to the affected Rockwell Automation controllers.
What systems are affected by CVE-2010-5305?
CVE-2010-5305 affects Rockwell Automation RSLogix 1785-Lx and 1747-L5x controllers.
What are the potential consequences of CVE-2010-5305?
The potential consequences of CVE-2010-5305 include unauthorized programming and configuration alterations to critical industrial control systems.
Is CVE-2010-5305 actively exploited?
There is no public indication that CVE-2010-5305 is actively exploited, but the potential for exploitation exists.

agent/weakness
agent/type
agent/author
agent/severity
agent/description
agent/first-publish-date
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
collector/mitre-cve
source/MITRE
agent/references
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
agent/source
agent/softwarecombine
agent/tags
agent/event
vendor/rockwellautomation
canonical/rslogix
canonical/rockwell automation plc-5 controller
canonical/rockwell automation slc 5/01 1747-l5x firmware
canonical/rockwell automation slc 5/01 1747-l5x

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.