Rockwell Automation Update
2081Warning Date
Severity Level
Warning Number
Target Sector
20 May, 2020
● High
2020-1257
Energy - Water and Utilities - Manufacturing
Description:
Multiple vulnerabilities has been discovered in the following Rockwell Automation products:
- FactoryTalk Linx software (Previously called RSLinx Enterprise)
- Versions 6.00, 6.10, and 6.11
- RSLinx Classic
- Version 4.11.00 and prior
- RSNetWorx software
- Version 28.00.00 and prior
- Studio 5000 Logix Designer software
- Version 32 and prior
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Memory Corruption
- SQL Injection
- Denial of Service (DoS)
Best practice and Recommendations:
The CERT team encourages users to review Rockwell Automation security advisory and apply the necessary updates: