CVE-2020-6998: Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers Improper Input Validation
First published: Wed Jul 27 2022(Updated: )
The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creating an infinite loop. This may allow an attacker to send specially crafted CIP packet requests to a controller, which may cause denial-of-service conditions in communications with other products.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rockwellautomation Armor Compact Guardlogix 5370 Firmware | <=33 | |
| Rockwellautomation Armor Compact Guardlogix 5370 | ||
| Rockwellautomation Compact Guardlogix 5370 Firmware | <=33 | |
| Rockwellautomation Compact Guardlogix 5370 | ||
| Rockwellautomation Compactlogix 5370 L1 Firmware | <=33 | |
| Rockwellautomation Compactlogix 5370 L1 | ||
| Rockwellautomation Compactlogix 5370 L2 Firmware | <=33 | |
| Rockwellautomation Compactlogix 5370 L2 | ||
| Rockwellautomation Compactlogix 5370 L3 Firmware | <=33 | |
| Rockwellautomation Compactlogix 5370 L3 | ||
| Rockwellautomation Controllogix 5570 Firmware | <=33 | |
| Rockwellautomation Controllogix 5570 | ||
| Rockwellautomation Guardlogix 5560 Firmware | <=33 | |
| Rockwellautomation Guardlogix 5560 | ||
| Rockwellautomation Guardlogix 5570 Firmware | <=33 | |
| Rockwellautomation Guardlogix 5570 | ||
| Rockwellautomation Guardlogix 5580 Firmware | <=33 | |
| Rockwellautomation Guardlogix 5580 | ||
| Rockwell Automation Armor Compact GuardLogix 5370 controllers, Versions 33 and prior | ||
| Rockwell Automation Armor GuardLogix, Safety Controllers, Versions 33 and prior | ||
| Rockwell Automation CompactLogix 5370 L1 controllers, Versions 33 and prior | ||
| Rockwell Automation CompactLogix 5370 L2 controllers, Versions 33 and prior | ||
| Rockwell Automation CompactLogix 5370 L3 controllers, Versions 33 and prior | ||
| Rockwell Automation Compact GuardLogix 5370 controllers, Versions 33 and prior | ||
| Rockwell Automation ControlLogix 5570 controllers, Versions 33 and prior |
Remedy
Rockwell Automation recommends affected users apply firmware v33.011 or later. For more information see the Rockwell Automation advisory (login required).
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-6998?
CVE-2020-6998 is a vulnerability in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior that allows an attacker to create an infinite loop by sending specially crafted CIP packet requests.
What is the severity of CVE-2020-6998?
The severity of CVE-2020-6998 is high, with a CVSS score of 8.6.
How does CVE-2020-6998 affect Rockwell Automation products?
CVE-2020-6998 affects Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior.
How can an attacker exploit CVE-2020-6998?
An attacker can exploit CVE-2020-6998 by sending specially crafted CIP packet requests to the vulnerable Rockwell Automation devices.
Are there any fixes available for CVE-2020-6998?
Rockwell Automation has released firmware updates to address the vulnerability. Users are advised to update to the latest firmware version.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/title
- agent/remedy
- agent/first-publish-date
- agent/event
- agent/description
- agent/severity
- agent/weakness
- agent/references
- agent/tags
- agent/softwarecombine
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/rockwellautomation
- canonical/rockwellautomation armor compact guardlogix 5370 firmware
- version/rockwellautomation armor compact guardlogix 5370 firmware/33
- canonical/rockwellautomation armor compact guardlogix 5370
- canonical/rockwellautomation compact guardlogix 5370 firmware
- version/rockwellautomation compact guardlogix 5370 firmware/33
- canonical/rockwellautomation compact guardlogix 5370
- canonical/rockwellautomation compactlogix 5370 l1 firmware
- version/rockwellautomation compactlogix 5370 l1 firmware/33
- canonical/rockwellautomation compactlogix 5370 l1
- canonical/rockwellautomation compactlogix 5370 l2 firmware
- version/rockwellautomation compactlogix 5370 l2 firmware/33
- canonical/rockwellautomation compactlogix 5370 l2
- canonical/rockwellautomation compactlogix 5370 l3 firmware
- version/rockwellautomation compactlogix 5370 l3 firmware/33
- canonical/rockwellautomation compactlogix 5370 l3
- canonical/rockwellautomation controllogix 5570 firmware
- version/rockwellautomation controllogix 5570 firmware/33
- canonical/rockwellautomation controllogix 5570
- canonical/rockwellautomation guardlogix 5560 firmware
- version/rockwellautomation guardlogix 5560 firmware/33
- canonical/rockwellautomation guardlogix 5560
- canonical/rockwellautomation guardlogix 5570 firmware
- version/rockwellautomation guardlogix 5570 firmware/33
- canonical/rockwellautomation guardlogix 5570
- canonical/rockwellautomation guardlogix 5580 firmware
- version/rockwellautomation guardlogix 5580 firmware/33
- canonical/rockwellautomation guardlogix 5580
- vendor/rockwell automation
- canonical/rockwell automation armor compact guardlogix 5370 controllers, versions 33 and prior
- canonical/rockwell automation armor guardlogix, safety controllers, versions 33 and prior
- canonical/rockwell automation compactlogix 5370 l1 controllers, versions 33 and prior
- canonical/rockwell automation compactlogix 5370 l2 controllers, versions 33 and prior
- canonical/rockwell automation compactlogix 5370 l3 controllers, versions 33 and prior
- canonical/rockwell automation compact guardlogix 5370 controllers, versions 33 and prior
- canonical/rockwell automation controllogix 5570 controllers, versions 33 and prior