Security Advisory

CVE-2023-0027

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-17 16:52:21

Last updated 2025-02-26 18:36:20

Assigner Rockwell

State PUBLISHED

Description

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected device’s Modbus TCP Server AOI information.

← Browse all CVEs View on cve.org ↗