← back
CVE-2017-7924

CVE-2017-7924

EPSS 22.2%CWE-20
Vexday Risk Score
23Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS EPSS 22.2%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
20 Sep 2017Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
An Improper Input Validation issue was discovered in Rockwell Automation MicroLogix 1100 controllers 1763-L16BWA, 1763-L16AWA, 1763-L16BBB, and 1763-L16DWD. A remote, unauthenticated attacker could send a single, specially crafted Programmable Controller Communication Commands (PCCC) packet to the controller that could potentially cause the controller to enter a DoS condition.
Affected products
n/a · Rockwell Automation MicroLogix 1100 Controllers

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-17-138-03http://www.securityfocus.com/bid/99622