Security bypass possible with now-addressed Rockwell Logix PLC flaw

5 August 2024

Intrusions leveraging the flaw against impacted modules on the 1756 chassis containing the devices’ communication processors, controllers, and I/O modules could result in the execution of common industrial protocol commands enabling the alteration of controller user projects and/or device configurations, a report from Claroty revealed. “We found a vulnerability that allowed an attacker to bypass the trusted slot feature, jumping between local backplane slots within a 1756 chassis using CIP routing, traversing the security boundary meant to protect the CPU from untrusted cards.

Source: SC Magazine

Date:

5 August 2024

Categorie(s):

NEWS

Tag(s):

IT, News, Rockwell

Canada Arrests Suspected Hacker Linked to Snowflake Data Breaches5 November 2024
Amazon Inspector suppression rules best practices for AWS Organizations5 November 2024
Building Cybersecurity Resilience: Strategies, Technologies, and Best Practices from Industry Leaders5 November 2024
Criminals open DocuSign’s Envelope API to make BEC special delivery5 November 2024
Link Index for Customer Identity and Access Management5 November 2024