Rockwell Automation RSLinx Vulnerability Advisory
Rockwell Automation RSLinx Vulnerability Advisory
🚨 Attention all users of RSLinx Classic! 🚨
A critical vulnerability has been identified in Rockwell Automation’s RSLinx Classic software that could lead to a denial of service. This vulnerability arises from a stack-based buffer overflow, allowing potential attackers to execute arbitrary code remotely. The affected versions include RSLinx Classic <= 4.50.00 (CVE-2020-13573).
Affected Sectors
This vulnerability impacts several critical infrastructure sectors, including:
- Critical Manufacturing
- Energy
- Food and Agriculture
- Water and Wastewater
Recommended Actions
Rockwell Automation advises all customers using the affected software to upgrade to version 4.60.00 or later. If upgrading is not feasible, consider applying the available patch (BF31213) for your current version or implementing recommended security best practices.
Defensive Measures
CISA recommends the following defensive measures to minimize the risk of exploitation:
- Minimize network exposure for all control system devices.
- Ensure devices are not accessible from the internet.
- Use firewalls to isolate control system networks from business networks.
- When remote access is necessary, utilize secure methods like Virtual Private Networks (VPNs).
Organizations should perform a proper impact analysis and risk assessment before deploying any defensive measures. If you observe any suspicious activity, follow your internal procedures and report findings to CISA for tracking and correlation.
No known public exploitation targeting this vulnerability has been reported to CISA at this time.
For more details, please read the complete advisory: Read full article