CVE-2023-3596

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 12, 2023

Updated: Jul 20, 2023

CWE ID 787

Summary

CVE-2023-3596 is a denial-of-service vulnerability affecting Rockwell Automation's 1756-EN4* Ethernet/IP communication products. A malicious user can exploit this vulnerability by sending maliciously crafted Common Industrial Protocol (CIP) messages, leading the target system to assert and ultimately causing a denial of service. This issue poses a risk to industrial automation systems using the affected products and requires immediate attention for patching or mitigation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r8eQmj
https://www.cve.org/CVERecord?id=CVE-2023-3596
https://nvd.nist.gov/vuln/detail/CVE-2023-3596

Back to Vulnerability Database

CVE-2023-3596

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations