Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-0027: Modbus TCP AOI Server Could Leak Sensitive Information

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected device’s Modbus TCP Server AOI information.

CVE
#vulnerability#web#microsoft#auth

Skip Navigation

menu

  • Support Center
  • Get Support Chat & Submit a Question Phone Support Holiday Schedule
  • Training & Webinars
  • Online Forum
  • Customer Care Customer Care Overview Phone Support Holiday Schedule

Sign In

Quickly log in or create an account using an existing service

Yahoo

What will happen: When you click on this button you will be taken to Yahoo. Once you log in, Yahoo will verify you and send you back here where you’ll be logged in!

Log In or Create an AccountOpens new dialog

Please log in to continue, Username Password

Email Address *

Username *

Password

Re-enter a value for the field ‘Password’

Must match Password

First Name *

Last Name *

Forgot your username or password?

The page will refresh upon submission. Any pending input will be lost.

03-Feb-2022 - Important product notice regarding Microsoft vulnerability patch (MS KB5004442)

Current product hierarchy

  1. Automation Control
  2. Programmable Controllers

ID: PN1619 | Access Levels: Everyone

Search

Did you mean:

Published DatePublished Date 03/16/2023

Executive Summary

Rockwell Automation received a report from researchers at Veermata Jijabai Technological Institute of a vulnerability that was contained within the Modbus TCP Server Add-On Instructions (AOI) for Cont…

Login Required to View Full Answer Content

Please use the ‘Sign In’ button above

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda