Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2012-6437

Improper Authentication

Published: Jan 24, 2013 | Modified: Jan 25, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2012-6437
CWEhttps://cwe.mitre.org/data/definitions/287.html

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and earlier; SoftLogix 18 and earlier; CompactLogix controllers 19 and earlier; SoftLogix controllers 19 and earlier; ControlLogix controllers 20 and earlier; GuardLogix controllers 20 and earlier; and MicroLogix 1100 and 1400 do not properly perform authentication for Ethernet firmware updates, which allows remote attackers to execute arbitrary code via a Trojan horse update image.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name Vendor Start Version End Version
Controllogix_controllers Rockwellautomation * 20 (including)
Guardlogix_controllers Rockwellautomation * 20 (including)
Micrologix Rockwellautomation * 1100 (including)
Micrologix Rockwellautomation * 1400 (including)
Softlogix_controllers Rockwellautomation * 19 (including)
1756-enbt Rockwellautomation - (including) - (including)
1756-eweb Rockwellautomation - (including) - (including)
1768-enbt Rockwellautomation - (including) - (including)
1768-eweb Rockwellautomation - (including) - (including)
1794-aentr_flex_i/o_ethernet/ip_adapter Rockwellautomation - (including) - (including)
Compactlogix Rockwellautomation * 18 (including)
Compactlogix_controllers Rockwellautomation * 19 (including)
Compactlogix_l32e_controller Rockwellautomation - (including) - (including)
Compactlogix_l35e_controller Rockwellautomation - (including) - (including)
Controllogix Rockwellautomation * 18 (including)
Flexlogix_1788-enbt_adapter Rockwellautomation - (including) - (including)
Guardlogix Rockwellautomation * 18 (including)
Softlogix Rockwellautomation * 18 (including)

Potential Mitigations

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use