CVE-2016-9338

First published: Mon Feb 13 2017(Updated: )

An issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 controller 1763-L16AWA, Series A and B, Version 14.000 and prior versions; 1763-L16BBB, Series A and B, Version 14.000 and prior versions; 1763-L16BWA, Series A and B, Version 14.000 and prior versions; and 1763-L16DWD, Series A and B, Version 14.000 and prior versions. Because of an Incorrect Permission Assignment for Critical Resource, users with administrator privileges may be able to remove all administrative users requiring a factory reset to restore ancillary web server function. Exploitation of this vulnerability will still allow the affected device to function in its capacity as a controller.

Credit: ics-cert@hq.dhs.gov

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/references
• agent/type
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/author
• agent/severity
• agent/tags
• agent/first-publish-date
• agent/event
• agent/description
• vendor/rockwellautomation
• canonical/rockwellautomation 1763-l16awa series a
• version/rockwellautomation 1763-l16awa series a/14.000
• canonical/rockwellautomation 1763-l16awa series b
• version/rockwellautomation 1763-l16awa series b/14.000
• canonical/rockwellautomation 1763-l16bbb series a
• version/rockwellautomation 1763-l16bbb series a/14.000
• canonical/rockwellautomation 1763-l16bbb series b
• version/rockwellautomation 1763-l16bbb series b/14.000
• canonical/rockwellautomation 1763-l16bwa series a
• version/rockwellautomation 1763-l16bwa series a/14.000
• canonical/rockwellautomation 1763-l16bwa series b
• version/rockwellautomation 1763-l16bwa series b/14.000
• canonical/rockwellautomation 1763-l16dwd series a
• version/rockwellautomation 1763-l16dwd series a/14.000
• canonical/rockwellautomation 1763-l16dwd series b
• version/rockwellautomation 1763-l16dwd series b/14.000
• canonical/rockwellautomation 1766-l32awa series a
• version/rockwellautomation 1766-l32awa series a/15.004
• canonical/rockwellautomation 1766-l32awa series b
• version/rockwellautomation 1766-l32awa series b/15.004
• canonical/rockwellautomation 1766-l32awaa series a
• version/rockwellautomation 1766-l32awaa series a/15.004
• canonical/rockwellautomation 1766-l32awaa series b
• version/rockwellautomation 1766-l32awaa series b/15.004
• canonical/rockwellautomation 1766-l32bwa series a
• version/rockwellautomation 1766-l32bwa series a/15.004
• canonical/rockwellautomation 1766-l32bwa series b
• version/rockwellautomation 1766-l32bwa series b/15.004
• canonical/rockwellautomation 1766-l32bwaa series a
• version/rockwellautomation 1766-l32bwaa series a/15.004
• canonical/rockwellautomation 1766-l32bwaa series b
• version/rockwellautomation 1766-l32bwaa series b/15.004
• canonical/rockwellautomation 1766-l32bxb series a
• version/rockwellautomation 1766-l32bxb series a/15.004
• canonical/rockwellautomation 1766-l32bxb series b
• version/rockwellautomation 1766-l32bxb series b/15.004
• canonical/rockwellautomation 1766-l32bxba series a
• version/rockwellautomation 1766-l32bxba series a/15.004
• canonical/rockwellautomation 1766-l32bxba series b
• version/rockwellautomation 1766-l32bxba series b/15.004