Rockwell Automation FLEX I/O EtherNet/IP Adapters
Summary
CISA has issued an alert regarding multiple vulnerabilities in Rockwell Automation FLEX I/O EtherNet/IP Adapters, specifically versions 1794-AENTR V2.012 and 1794-AENTRXT V2.012. Exploitation could lead to unauthorized access, account takeover, and loss of availability due to improper memory handling and missing authentication.
IFF Assessment
The identified vulnerabilities allow for unauthorized access and potential denial of service, posing a direct threat to industrial control systems and their availability.
Severity
The CVSS score of 9.4 reflects the critical severity of the vulnerabilities, which include missing release of memory after effective lifetime and missing authentication for critical functions, enabling attackers to gain unauthorized access and cause significant disruption.
Defender Context
This alert highlights critical vulnerabilities in industrial control systems (ICS) that could be exploited to disrupt operations. Defenders should prioritize patching affected Rockwell Automation FLEX I/O EtherNet/IP Adapters to version 2.013 and implement network segmentation and strict access controls to mitigate the risk of unauthorized access and denial-of-service attacks in operational technology environments.